Information security governance in the electricity industry

Detalhes bibliográficos
Autor(a) principal: de Oliveira, Igor Antônio Magalhães
Data de Publicação: 2021
Outros Autores: Méxas, Mirian Picinini, Machado, Elaine Mara Marçal, Drumond, Geisa Meirelles
Tipo de documento: Artigo
Idioma: eng
Título da fonte: Brazilian Journal of Operations & Production Management (Online)
Texto Completo: https://bjopm.org.br/bjopm/article/view/1228
Resumo: Goal: This study aims to assess the importance and use of Information Security (IS) governance in the electricity industry and other segments, in order to propose IS governance guidelines for this industry. Design/methodology/approach: Literature review was made of scientific articles, frameworks and norms that supported the field research applied to managers, coordinators and experts from IS area, totaling 104 respondents from different countries. The data collected were analyzed by comparing the degree of importance with the use, and also by means of cross-analysis. Results: It was observed that most respondents agree with the importance of the themes approached, however, in practice, these concepts are not always used by the organization. Besides, it was observed that when security is directly responding for the high level of the organization, the maturity level is between optimized and managed. However, where security is subordinated to the technology area, the level appears with higher percentage, as repeatable. Limitations of the investigation: The sample size is a limiting factor as it was conditioned to questionnaire responses sent to IS experts through electronic means and social networks and it is not possible to generalize as the population size is not known. Practical implications: To assist the electricity industry in taking measures turned to IS governance, and, with that, increase consumer protection with regard to their classified data and the company’s reliability in power supply. Originality/value: The present research originality lies in the proposal of 10 IS governance guidelines obtained from the literature review and the field research applied to IS experts, aiming to raise, more and more, its level of maturity.
id ABEPRO_3fb641a44f469379cbfd639851bc0319
oai_identifier_str oai:ojs.bjopm.org.br:article/1228
network_acronym_str ABEPRO
network_name_str Brazilian Journal of Operations & Production Management (Online)
repository_id_str
spelling Information security governance in the electricity industryInformation securityElectricityIS governanceGoal: This study aims to assess the importance and use of Information Security (IS) governance in the electricity industry and other segments, in order to propose IS governance guidelines for this industry. Design/methodology/approach: Literature review was made of scientific articles, frameworks and norms that supported the field research applied to managers, coordinators and experts from IS area, totaling 104 respondents from different countries. The data collected were analyzed by comparing the degree of importance with the use, and also by means of cross-analysis. Results: It was observed that most respondents agree with the importance of the themes approached, however, in practice, these concepts are not always used by the organization. Besides, it was observed that when security is directly responding for the high level of the organization, the maturity level is between optimized and managed. However, where security is subordinated to the technology area, the level appears with higher percentage, as repeatable. Limitations of the investigation: The sample size is a limiting factor as it was conditioned to questionnaire responses sent to IS experts through electronic means and social networks and it is not possible to generalize as the population size is not known. Practical implications: To assist the electricity industry in taking measures turned to IS governance, and, with that, increase consumer protection with regard to their classified data and the company’s reliability in power supply. Originality/value: The present research originality lies in the proposal of 10 IS governance guidelines obtained from the literature review and the field research applied to IS experts, aiming to raise, more and more, its level of maturity.Brazilian Association for Industrial Engineering and Operations Management (ABEPRO)2021-09-02info:eu-repo/semantics/articleinfo:eu-repo/semantics/publishedVersionResearch paperapplication/pdfhttps://bjopm.org.br/bjopm/article/view/122810.14488/BJOPM.2021.045Brazilian Journal of Operations & Production Management; Vol. 19 No. 1 (2022); 1-172237-8960reponame:Brazilian Journal of Operations & Production Management (Online)instname:Associação Brasileira de Engenharia de Produção (ABEPRO)instacron:ABEPROenghttps://bjopm.org.br/bjopm/article/view/1228/1003Copyright (c) 2021 Igor Antônio Magalhães de Oliveira, Mr, Mirian Picinini Méxas, Mrs., Elaine Mara Marçal Machado, Mrs., Geisa Meirelles Drumond, Mrsinfo:eu-repo/semantics/openAccessde Oliveira, Igor Antônio MagalhãesMéxas, Mirian PicininiMachado, Elaine Mara MarçalDrumond, Geisa Meirelles2021-09-30T21:37:36Zoai:ojs.bjopm.org.br:article/1228Revistahttps://bjopm.org.br/bjopmONGhttps://bjopm.org.br/bjopm/oaibjopm.journal@gmail.com2237-89601679-8171opendoar:2023-03-13T09:45:28.409088Brazilian Journal of Operations & Production Management (Online) - Associação Brasileira de Engenharia de Produção (ABEPRO)false
dc.title.none.fl_str_mv Information security governance in the electricity industry
title Information security governance in the electricity industry
spellingShingle Information security governance in the electricity industry
de Oliveira, Igor Antônio Magalhães
Information security
Electricity
IS governance
title_short Information security governance in the electricity industry
title_full Information security governance in the electricity industry
title_fullStr Information security governance in the electricity industry
title_full_unstemmed Information security governance in the electricity industry
title_sort Information security governance in the electricity industry
author de Oliveira, Igor Antônio Magalhães
author_facet de Oliveira, Igor Antônio Magalhães
Méxas, Mirian Picinini
Machado, Elaine Mara Marçal
Drumond, Geisa Meirelles
author_role author
author2 Méxas, Mirian Picinini
Machado, Elaine Mara Marçal
Drumond, Geisa Meirelles
author2_role author
author
author
dc.contributor.author.fl_str_mv de Oliveira, Igor Antônio Magalhães
Méxas, Mirian Picinini
Machado, Elaine Mara Marçal
Drumond, Geisa Meirelles
dc.subject.por.fl_str_mv Information security
Electricity
IS governance
topic Information security
Electricity
IS governance
description Goal: This study aims to assess the importance and use of Information Security (IS) governance in the electricity industry and other segments, in order to propose IS governance guidelines for this industry. Design/methodology/approach: Literature review was made of scientific articles, frameworks and norms that supported the field research applied to managers, coordinators and experts from IS area, totaling 104 respondents from different countries. The data collected were analyzed by comparing the degree of importance with the use, and also by means of cross-analysis. Results: It was observed that most respondents agree with the importance of the themes approached, however, in practice, these concepts are not always used by the organization. Besides, it was observed that when security is directly responding for the high level of the organization, the maturity level is between optimized and managed. However, where security is subordinated to the technology area, the level appears with higher percentage, as repeatable. Limitations of the investigation: The sample size is a limiting factor as it was conditioned to questionnaire responses sent to IS experts through electronic means and social networks and it is not possible to generalize as the population size is not known. Practical implications: To assist the electricity industry in taking measures turned to IS governance, and, with that, increase consumer protection with regard to their classified data and the company’s reliability in power supply. Originality/value: The present research originality lies in the proposal of 10 IS governance guidelines obtained from the literature review and the field research applied to IS experts, aiming to raise, more and more, its level of maturity.
publishDate 2021
dc.date.none.fl_str_mv 2021-09-02
dc.type.driver.fl_str_mv info:eu-repo/semantics/article
info:eu-repo/semantics/publishedVersion
Research paper
format article
status_str publishedVersion
dc.identifier.uri.fl_str_mv https://bjopm.org.br/bjopm/article/view/1228
10.14488/BJOPM.2021.045
url https://bjopm.org.br/bjopm/article/view/1228
identifier_str_mv 10.14488/BJOPM.2021.045
dc.language.iso.fl_str_mv eng
language eng
dc.relation.none.fl_str_mv https://bjopm.org.br/bjopm/article/view/1228/1003
dc.rights.driver.fl_str_mv info:eu-repo/semantics/openAccess
eu_rights_str_mv openAccess
dc.format.none.fl_str_mv application/pdf
dc.publisher.none.fl_str_mv Brazilian Association for Industrial Engineering and Operations Management (ABEPRO)
publisher.none.fl_str_mv Brazilian Association for Industrial Engineering and Operations Management (ABEPRO)
dc.source.none.fl_str_mv Brazilian Journal of Operations & Production Management; Vol. 19 No. 1 (2022); 1-17
2237-8960
reponame:Brazilian Journal of Operations & Production Management (Online)
instname:Associação Brasileira de Engenharia de Produção (ABEPRO)
instacron:ABEPRO
instname_str Associação Brasileira de Engenharia de Produção (ABEPRO)
instacron_str ABEPRO
institution ABEPRO
reponame_str Brazilian Journal of Operations & Production Management (Online)
collection Brazilian Journal of Operations & Production Management (Online)
repository.name.fl_str_mv Brazilian Journal of Operations & Production Management (Online) - Associação Brasileira de Engenharia de Produção (ABEPRO)
repository.mail.fl_str_mv bjopm.journal@gmail.com
_version_ 1797051461714051072

Registros relacionados