Browse > Article
http://dx.doi.org/10.13089/JKIISC.2018.28.4.941

A Study on Optimal Information Security Organizational Form in Financial Companies - Based on the Relationship between Management -  

Kim, Sang-ho (Korea University, Graduate School of Information Security)
Kim, In-Seok (Korea University, Graduate School of Information Security)
Publication Information
Journal of the Korea Institute of Information Security & Cryptology / v.28, no.4, 2018 , pp. 941-950 More about this Journal
Abstract
The form of information security organization of a financial company has various organizational forms in accordance with the responsibilities and roles of the Chief Information Officer (CIO), the Chief Information Security Officer (CISO) and the Chief Privacy Officer (CPO). However, it is necessary to examine whether these various types of information protection organizations are the optimal organizational forms. In this study, six types of information security organizations among the various types of information security organizations in terms of CISO, CIO, and CPO relationship were selected as candidates. This paper aims to study and elucidate the optimal organizational form of information security for financial companies.
Keywords
Organization; Financial Company; Relationship;
Citations & Related Records
연도 인용수 순위
  • Reference
1 Financial Services Commission "Comprehensive measures to strengthen financial computer security", pp,13, Jul. 2013
2 Ministry of Science and Technology, No. 2015-0324 "Designation of Information Security Management System Certification Body", Jul. 2015
3 Korea Internet & Security Agency (KISA), "Information Security Management System (ISMS) Certification Guidebook", pp. 38, April 2017
4 Korea Internet & Security Agency (KISA), "PIMS Certification Guidebook (Volume 1) - Operating System", pp.18-19, April 2017
5 Financial Services Commission, Financial Regulatory Complaints Portal, http://better.fsc.go.kr/fsc/subIndex/72.do, 2017-12-18
6 Financial Services Commission, "Shadow Regulation Improvement by Administrative Guidance", Sep, 2015
7 Financial Services Commission, "Strengthening Information Technology (IT) Sector Inspection of Financial Institutions", December 1999
8 Financial Supervisory Service, "IT Inspection Service Guide (January, 17)", Feb, 2017
9 Financial Supervisory Service, "Holding a Briefing Session on Supervision and Inspection of the IT & FinTech Division in 2018", Mar, 2018
10 Korea Information Security Agency "Standardization Study on Information Protection Governance for Information and Communication Companies", pp. 80-83, Dec. 2008
11 Thomas L. Saaty, "Analytic Hierarchy Process. In: Gass S.I., Fu M.C. (eds) Encyclopedia of Operations Research and Management Science", Springer, Boston, MA, 2013
12 Kim, Jeong-Deok, "A Study on the Key Success Factors for Effective Implementation of Personal Information Protection Governance" Jonornal of The Korea Institute of information Security & Cryptology, 21(5), pp. 199-201, Oct. 2011