Planning Security Services for IT Systems
arXiv:1409.5845v4
Originality Synthesis-oriented
AI Analysis
This addresses the problem of integrating security into business planning for organizations, though it appears incremental in approach.
The paper tackles the challenge of engaging business representatives in security planning by framing it as a business tool to manage risks and achieve objectives, with security compliance as part of that process.
Often the hardest job is to get business representatives to look at security as something that makes managing their risks and achieving their objectives easier, with security compliance as just part of that journey. This paper addresses that by making planning for security services a 'business tool'.