Security Management bibliography

References to academic Security Management papers.

If you are looking for references to academic conference and journal papers on security management, this bibliography will help you find some of the, in our view, more important ones and some easy to overlook ones. There are just too many papers to make it usefull to list them all. You can easily find most of them using Google Scholar. This Security management bibliography therefore contains only our favorite security management references. You'll find other bibliographies on security governance and security culture elsewhere on this web site.

If you believe your paper should be listed here as well, why not email us the reference and a copy of the paper and we will consider it!

Dhillon, G. and Backhouse, J. (2000). Information System Security Management in the New Millennium. Communications of the ACM, Vol. 43, No. 7, July 2000.

Grant, T.J., and Kooter, B.M. 2005. Comparing OODA & Other Models as Operational View C2 Architecture. In Proceedings of the 10th International Command and Control Research Technology Symposium, June 2005, McLean, VA. USA.

Kabay, M. E. (1993). Social Psychology and Infosec: Psycho-Social Factors in the Implementation of Information Security Policy. 16th U.S. National Computer Security Conference, USA.

Maynard S. & Ruighaver, A.B. (2006) What Makes a Good Information Security Policy: A Preliminary Framework for Evaluating Security Policy Quality. 5th Annual Security Conference, Las Vegas, Nevada USA, 19-20 April 2006.

Maynard, S., and Ruighaver, A.B. (2003) Development and Evaluation of Information System Security Policies. In Information Systems: The Challenges of Theory and Practice, Hunter, M. G. and Dhanda, K. K. (eds), Information Institute, Las Vegas, USA, pages 366 - 393.

Nosworthy, J. (2000) Implementing Information Security in the 21st Century - Do You Have the Balancing Factors? Computers and Security, Vol. 19. No. 4. 337-347

Peterson, R.R, Parker, M., and Ribbers P. (2002) Information Technology Governance Processes under environmental dynamism: Investigating competing theories of decision making and knowledge sharing. 23rd Annual International Conference on Information Systems, Barcelona, Spain, 15-18th December 2002.

Rowlingson, R. (2004) A Ten Step Process for Forensic Readiness. International Journal of Digital Evidence, 2 (3) 1-28.

Spruit, M. E. M. (1998), Competing Against Human Failing. The IFIP TC11 14th International Conference on Information Security (IFIP/SEC98), Vienna/Budapest

Tan, T., Ruighaver, A.B., Ahmad, A. (2003) Incident Handling: Where the Need for Planning is often not Recognised, Proceedings of the 1st Australian Computer Network, Information & Forensics Conference, Perth, Nov 24.

Von Solms, R. (1998) ‘Information security management: Why information security is so important’ Information Management & Computer Security 6(4): 174-177.