{"title":"中小企业视角下的IT服务管理","authors":"Mehdi Panjwani, M. Jäntti, Juuso Sormunen","doi":"10.1109/QUATIC.2016.053","DOIUrl":null,"url":null,"abstract":"Most of the existing information security management studies focus on information security of large organizations preventing security threats. However, a security management perspective of a small and medium-sized (SME) company is relatively different. Small and medium sized companies are at a greater risk because they cannot afford expensive tools. They lack process improvement capabilities and effort that can be spent on security management is limited. Due to limited budget, they cannot invest heavily in the IT service infrastructure and IT manpower. They become easy targets for cyber criminals and they can be easily victimized as they lack the resources compared to larger companies. Malicious internet content also becomes one of the major security concerns. Therefore, this study aims to answer the research problem: How small and mediumsized organizations perform IT security management. The main contribution of the paper is to capture information security management challenges from an SME's viewpoint and provide solutions to tackle these challenges. This paper aims to improve information security management of SMEs. From IT Service management perspective, the case study research approach was utilized in the study.","PeriodicalId":157671,"journal":{"name":"2016 10th International Conference on the Quality of Information and Communications Technology (QUATIC)","volume":"34 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2016-09-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"5","resultStr":"{\"title\":\"IT Service Management from a Perspective of Small and Medium Sized Companies\",\"authors\":\"Mehdi Panjwani, M. Jäntti, Juuso Sormunen\",\"doi\":\"10.1109/QUATIC.2016.053\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Most of the existing information security management studies focus on information security of large organizations preventing security threats. However, a security management perspective of a small and medium-sized (SME) company is relatively different. Small and medium sized companies are at a greater risk because they cannot afford expensive tools. They lack process improvement capabilities and effort that can be spent on security management is limited. Due to limited budget, they cannot invest heavily in the IT service infrastructure and IT manpower. They become easy targets for cyber criminals and they can be easily victimized as they lack the resources compared to larger companies. Malicious internet content also becomes one of the major security concerns. Therefore, this study aims to answer the research problem: How small and mediumsized organizations perform IT security management. The main contribution of the paper is to capture information security management challenges from an SME's viewpoint and provide solutions to tackle these challenges. This paper aims to improve information security management of SMEs. From IT Service management perspective, the case study research approach was utilized in the study.\",\"PeriodicalId\":157671,\"journal\":{\"name\":\"2016 10th International Conference on the Quality of Information and Communications Technology (QUATIC)\",\"volume\":\"34 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2016-09-01\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"5\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2016 10th International Conference on the Quality of Information and Communications Technology (QUATIC)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/QUATIC.2016.053\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2016 10th International Conference on the Quality of Information and Communications Technology (QUATIC)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/QUATIC.2016.053","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
IT Service Management from a Perspective of Small and Medium Sized Companies
Most of the existing information security management studies focus on information security of large organizations preventing security threats. However, a security management perspective of a small and medium-sized (SME) company is relatively different. Small and medium sized companies are at a greater risk because they cannot afford expensive tools. They lack process improvement capabilities and effort that can be spent on security management is limited. Due to limited budget, they cannot invest heavily in the IT service infrastructure and IT manpower. They become easy targets for cyber criminals and they can be easily victimized as they lack the resources compared to larger companies. Malicious internet content also becomes one of the major security concerns. Therefore, this study aims to answer the research problem: How small and mediumsized organizations perform IT security management. The main contribution of the paper is to capture information security management challenges from an SME's viewpoint and provide solutions to tackle these challenges. This paper aims to improve information security management of SMEs. From IT Service management perspective, the case study research approach was utilized in the study.
京公网安备 11010802042870号
京ICP备2023020795号-1
分享
求助内容:
应助结果提醒方式:
扫码关注我们
