Issue No. 01 - January/February (2007 vol. 5)
DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/MSP.2007.11
Wade H. Baker , Virginia Tech
Linda Wallace , Virginia Tech
Previous studies of organizations' use of information security controls have focused on the presence or absence of controls, rather than their quality. According to the authors' survey focusing on control quality, implementation quality varies significantly by organization size as well as industry.
information security, quality control, information and communication technologies, ICTs
W. H. Baker and L. Wallace, "Is Information Security Under Control?: Investigating Quality in Information Security Management," in IEEE Security & Privacy, vol. 5, no. , pp. 36-44, 2007.