| dc.contributor.advisor | Michael Cusumano. | en_US |
| dc.contributor.author | Sharma, Dhirendra, S.M. Massachusetts Institute of Technology | en_US |
| dc.contributor.other | System Design and Management Program. | en_US |
| dc.date.accessioned | 2011-12-09T21:25:42Z | |
| dc.date.available | 2011-12-09T21:25:42Z | |
| dc.date.copyright | 2011 | en_US |
| dc.date.issued | 2011 | en_US |
| dc.identifier.uri | http://hdl.handle.net/1721.1/67568 | |
| dc.description | Thesis (S.M. in Engineering and Management)--Massachusetts Institute of Technology, Engineering Systems Division, System Design and Management Program, 2011. | en_US |
| dc.description | Cataloged from PDF version of thesis. | en_US |
| dc.description | Includes bibliographical references (p. 124-130). | en_US |
| dc.description.abstract | There are several technological solutions available in the market to help organizations with information security breach detection and prevention such as intrusion detection and prevention systems, antivirus software, firewalls, and spam filters. There is no doubt in the fact that significant progress has been made in the technological side of information security. However, when we study causes of information security breaches, we find that a significant number are caused by non-technical reasons such as social engineering, theft of computing device or portable hard drive, human behavior, and human error. This leads us to conclude that information security should not be viewed through technology perspective only. Instead, a more holistic approach is required. This thesis provides a systems approach towards information security management and include technological, management and social aspects. This thesis starts with introduction especially background and motivation of the author, followed by literature research. Next, Enterprise Information Security Management Framework is presented leading to estimation of an organization's information security management maturity-level. Finally, conclusion and potential future work are presented. | en_US |
| dc.description.statementofresponsibility | by Dhirendra Sharma. | en_US |
| dc.format.extent | 130 p. | en_US |
| dc.language.iso | eng | en_US |
| dc.publisher | Massachusetts Institute of Technology | en_US |
| dc.rights | M.I.T. theses are protected by
copyright. They may be viewed from this source for any purpose, but
reproduction or distribution in any format is prohibited without written
permission. See provided URL for inquiries about permission. | en_US |
| dc.rights.uri | http://dspace.mit.edu/handle/1721.1/7582 | en_US |
| dc.subject | Engineering Systems Division. | en_US |
| dc.subject | System Design and Management Program. | en_US |
| dc.title | Enterprise Information Security Management Framework [EISMF] | en_US |
| dc.title.alternative | EISMF | en_US |
| dc.type | Thesis | en_US |
| dc.description.degree | S.M.in Engineering and Management | en_US |
| dc.contributor.department | System Design and Management Program. | en_US |
| dc.contributor.department | Massachusetts Institute of Technology. Engineering Systems Division | |
| dc.identifier.oclc | 761731123 | en_US |
