Louisa Schneller
Implementing converged security risk management: Drivers, barriers, and facilitators
Schneller, Louisa; Porter, Cody Normitta; Wakefield, Alison
Authors
Cody Normitta Porter
Alison Wakefield
Abstract
Converged security risk management is an approach that addresses interdependencies between security-related business functions that have traditionally been managed by separate departments within organizations. It is a more effective means of addressing organizational security risks and threats than tackling physical and information security challenges separately, given that the boundaries between the two are frequently blurred. However, fully converged security remains the exception rather than the rule, leaving organizations increasingly vulnerable as their adoption and reliance on digital technologies accelerates. Through interviews with eight senior security professionals, this research identified key factors critical to effective converged security risk management, expressed as ‘drivers,’ ‘barriers,’ and ‘facilitators.’ The practitioners’ accounts illuminated how the modern threat landscape continues to drive further the need for such an approach, while the traditional separation of corporate security departments from the information security function in organizations remains a barrier. A greater focus on training and education, as well as soft skills, were identified as key priorities in the drive for an effective converged approach.
| Journal Article Type | Article |
|---|---|
| Acceptance Date | Apr 18, 2022 |
| Online Publication Date | May 12, 2022 |
| Publication Date | Jun 30, 2023 |
| Deposit Date | Jun 14, 2022 |
| Publicly Available Date | May 13, 2023 |
| Journal | Security Journal |
| Print ISSN | 0955-1662 |
| Electronic ISSN | 1743-4645 |
| Publisher | Palgrave Macmillan (part of Springer Nature) |
| Peer Reviewed | Peer Reviewed |
| Volume | 36 |
| Pages | 333–349 |
| DOI | https://doi.org/10.1057/s41284-022-00341-6 |
| Keywords | security risk management; risk management; Convergence; business continuity; enterprise risk management; soft skills; training; security management |
| Public URL | https://uwe-repository.worktribe.com/output/9642462 |
| Publisher URL | https://link.springer.com/article/10.1057/s41284-022-00341-6 |
Files
Implementing converged security risk management: Drivers, barriers, and facilitators
(473 Kb)
PDF
Licence
http://www.rioxx.net/licenses/all-rights-reserved
Publisher Licence URL
http://www.rioxx.net/licenses/all-rights-reserved
Copyright Statement
Copyright of The Author(s), under exclusive licence to Springer Nature Limited 2022
This is the author’s accepted manuscript. The final published version is available here: https://doi.org/10.1057/s41284-022-00341-6
Implementing converged security risk management: Drivers, barriers, and facilitators
(226 Kb)
Document
Licence
http://www.rioxx.net/licenses/all-rights-reserved
Publisher Licence URL
http://www.rioxx.net/licenses/all-rights-reserved
Copyright Statement
Copyright of The Author(s), under exclusive licence to Springer Nature Limited 2022
This is the author’s accepted manuscript. The final published version is available here: https://doi.org/10.1057/s41284-022-00341-6
You might also like
A critical analysis of the Model Statement literature: Should this tool be used in practice?
(2020)
Journal Article