{"id":"https://openalex.org/W2075986741","doi":"https://doi.org/10.1108/09685220310500153","title":"An integrated system theory of information security management","display_name":"An integrated system theory of information security management","publication_year":2003,"publication_date":"2003-11-11","ids":{"openalex":"https://openalex.org/W2075986741","doi":"https://doi.org/10.1108/09685220310500153","mag":"2075986741"},"language":"en","primary_location":{"id":"doi:10.1108/09685220310500153","is_oa":false,"landing_page_url":"https://doi.org/10.1108/09685220310500153","pdf_url":null,"source":{"id":"https://openalex.org/S204075876","display_name":"Information Management & Computer Security","issn_l":"0968-5227","issn":["0968-5227","1758-5805"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319811","host_organization_name":"Emerald Publishing Limited","host_organization_lineage":["https://openalex.org/P4310319811"],"host_organization_lineage_names":["Emerald Publishing Limited"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Information Management &amp; Computer Security","raw_type":"journal-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5047786871","display_name":"Kwo\u2010Shing Hong","orcid":null},"institutions":[],"countries":[],"is_corresponding":true,"raw_author_name":"Kwo\u2010Shing Hong","raw_affiliation_strings":["Department of Management Information Systems, National Cheng\u2010Chi University","Overall Planning Department, Control Yuan of Republic of China, Taiwan"],"affiliations":[{"raw_affiliation_string":"Department of Management Information Systems, National Cheng\u2010Chi University","institution_ids":[]},{"raw_affiliation_string":"Overall Planning Department, Control Yuan of Republic of China, Taiwan","institution_ids":[]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5000774070","display_name":"Yen\u2010Ping Chi","orcid":null},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Yen\u2010Ping Chi","raw_affiliation_strings":["Department of Management Information Systems, National Cheng\u2010Chi University, Taiwan"],"affiliations":[{"raw_affiliation_string":"Department of Management Information Systems, National Cheng\u2010Chi University, Taiwan","institution_ids":[]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5037675948","display_name":"Louis R. Chao","orcid":"https://orcid.org/0000-0003-3766-8955"},"institutions":[{"id":"https://openalex.org/I107470533","display_name":"Tamkang University","ror":"https://ror.org/04tft4718","country_code":"TW","type":"education","lineage":["https://openalex.org/I107470533"]}],"countries":["TW"],"is_corresponding":false,"raw_author_name":"Louis R. Chao","raw_affiliation_strings":["Control Yuan of Republic of China, Taiwan","Institute of Management Science, Tamkang University"],"affiliations":[{"raw_affiliation_string":"Control Yuan of Republic of China, Taiwan","institution_ids":[]},{"raw_affiliation_string":"Institute of Management Science, Tamkang University","institution_ids":["https://openalex.org/I107470533"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5041663936","display_name":"Jih\u2010Hsing Tang","orcid":null},"institutions":[{"id":"https://openalex.org/I29742261","display_name":"Takming University of Science and Technology","ror":"https://ror.org/002xar614","country_code":"TW","type":"education","lineage":["https://openalex.org/I29742261"]}],"countries":["TW"],"is_corresponding":false,"raw_author_name":"Jih\u2010Hsing Tang","raw_affiliation_strings":["Tak Ming College, Taipei, Taiwan"],"affiliations":[{"raw_affiliation_string":"Tak Ming College, Taipei, Taiwan","institution_ids":["https://openalex.org/I29742261"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":4,"corresponding_author_ids":["https://openalex.org/A5047786871"],"corresponding_institution_ids":[],"apc_list":null,"apc_paid":null,"fwci":8.0845,"has_fulltext":false,"cited_by_count":146,"citation_normalized_percentile":{"value":0.97054271,"is_in_top_1_percent":false,"is_in_top_10_percent":true},"cited_by_percentile_year":{"min":97,"max":99},"biblio":{"volume":"11","issue":"5","first_page":"243","last_page":"248"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10734","display_name":"Information and Cyber Security","score":0.9993000030517578,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10734","display_name":"Information and Cyber Security","score":0.9993000030517578,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11572","display_name":"Information Technology Governance and Strategy","score":0.9833999872207642,"subfield":{"id":"https://openalex.org/subfields/1404","display_name":"Management Information Systems"},"field":{"id":"https://openalex.org/fields/14","display_name":"Business, Management and Accounting"},"domain":{"id":"https://openalex.org/domains/2","display_name":"Social Sciences"}},{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.9707000255584717,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/security-management","display_name":"Security management","score":0.6806309223175049},{"id":"https://openalex.org/keywords/information-security-management","display_name":"Information security management","score":0.6668555736541748},{"id":"https://openalex.org/keywords/security-information-and-event-management","display_name":"Security information and event management","score":0.6106595993041992},{"id":"https://openalex.org/keywords/information-security","display_name":"Information security","score":0.5421181321144104},{"id":"https://openalex.org/keywords/security-convergence","display_name":"Security convergence","score":0.5420002937316895},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.5008707046508789},{"id":"https://openalex.org/keywords/contingency-theory","display_name":"Contingency theory","score":0.4985668659210205},{"id":"https://openalex.org/keywords/popularity","display_name":"Popularity","score":0.4447647035121918},{"id":"https://openalex.org/keywords/knowledge-management","display_name":"Knowledge management","score":0.41371679306030273},{"id":"https://openalex.org/keywords/management-theory","display_name":"Management theory","score":0.4108811616897583},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.37225377559661865},{"id":"https://openalex.org/keywords/business","display_name":"Business","score":0.347654789686203},{"id":"https://openalex.org/keywords/cloud-computing-security","display_name":"Cloud computing security","score":0.3400895595550537},{"id":"https://openalex.org/keywords/management-science","display_name":"Management science","score":0.2983672022819519},{"id":"https://openalex.org/keywords/security-service","display_name":"Security service","score":0.24789440631866455},{"id":"https://openalex.org/keywords/network-security-policy","display_name":"Network security policy","score":0.1830550730228424},{"id":"https://openalex.org/keywords/economics","display_name":"Economics","score":0.145095556974411},{"id":"https://openalex.org/keywords/political-science","display_name":"Political science","score":0.0856519341468811},{"id":"https://openalex.org/keywords/law","display_name":"Law","score":0.08212032914161682}],"concepts":[{"id":"https://openalex.org/C83163435","wikidata":"https://www.wikidata.org/wiki/Q3954104","display_name":"Security management","level":2,"score":0.6806309223175049},{"id":"https://openalex.org/C148976360","wikidata":"https://www.wikidata.org/wiki/Q1662500","display_name":"Information security management","level":5,"score":0.6668555736541748},{"id":"https://openalex.org/C103377522","wikidata":"https://www.wikidata.org/wiki/Q3493999","display_name":"Security information and event management","level":4,"score":0.6106595993041992},{"id":"https://openalex.org/C527648132","wikidata":"https://www.wikidata.org/wiki/Q189900","display_name":"Information security","level":2,"score":0.5421181321144104},{"id":"https://openalex.org/C52420254","wikidata":"https://www.wikidata.org/wiki/Q7445028","display_name":"Security convergence","level":5,"score":0.5420002937316895},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.5008707046508789},{"id":"https://openalex.org/C60297154","wikidata":"https://www.wikidata.org/wiki/Q1434943","display_name":"Contingency theory","level":2,"score":0.4985668659210205},{"id":"https://openalex.org/C2780586970","wikidata":"https://www.wikidata.org/wiki/Q1357284","display_name":"Popularity","level":2,"score":0.4447647035121918},{"id":"https://openalex.org/C56739046","wikidata":"https://www.wikidata.org/wiki/Q192060","display_name":"Knowledge management","level":1,"score":0.41371679306030273},{"id":"https://openalex.org/C2992591114","wikidata":"https://www.wikidata.org/wiki/Q2414942","display_name":"Management theory","level":2,"score":0.4108811616897583},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.37225377559661865},{"id":"https://openalex.org/C144133560","wikidata":"https://www.wikidata.org/wiki/Q4830453","display_name":"Business","level":0,"score":0.347654789686203},{"id":"https://openalex.org/C184842701","wikidata":"https://www.wikidata.org/wiki/Q370563","display_name":"Cloud computing security","level":3,"score":0.3400895595550537},{"id":"https://openalex.org/C539667460","wikidata":"https://www.wikidata.org/wiki/Q2414942","display_name":"Management science","level":1,"score":0.2983672022819519},{"id":"https://openalex.org/C29983905","wikidata":"https://www.wikidata.org/wiki/Q7445066","display_name":"Security service","level":3,"score":0.24789440631866455},{"id":"https://openalex.org/C117110713","wikidata":"https://www.wikidata.org/wiki/Q3394676","display_name":"Network security policy","level":4,"score":0.1830550730228424},{"id":"https://openalex.org/C162324750","wikidata":"https://www.wikidata.org/wiki/Q8134","display_name":"Economics","level":0,"score":0.145095556974411},{"id":"https://openalex.org/C17744445","wikidata":"https://www.wikidata.org/wiki/Q36442","display_name":"Political science","level":0,"score":0.0856519341468811},{"id":"https://openalex.org/C199539241","wikidata":"https://www.wikidata.org/wiki/Q7748","display_name":"Law","level":1,"score":0.08212032914161682},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.0},{"id":"https://openalex.org/C79974875","wikidata":"https://www.wikidata.org/wiki/Q483639","display_name":"Cloud computing","level":2,"score":0.0}],"mesh":[],"locations_count":2,"locations":[{"id":"doi:10.1108/09685220310500153","is_oa":false,"landing_page_url":"https://doi.org/10.1108/09685220310500153","pdf_url":null,"source":{"id":"https://openalex.org/S204075876","display_name":"Information Management & Computer Security","issn_l":"0968-5227","issn":["0968-5227","1758-5805"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319811","host_organization_name":"Emerald Publishing Limited","host_organization_lineage":["https://openalex.org/P4310319811"],"host_organization_lineage_names":["Emerald Publishing Limited"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Information Management &amp; Computer Security","raw_type":"journal-article"},{"id":"pmh:oai:tkuir.lib.tku.edu.tw:987654321/59868","is_oa":false,"landing_page_url":"https://tkuir.lib.tku.edu.tw/dspace/handle/987654321/59868","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":null,"raw_type":null}],"best_oa_location":null,"sustainable_development_goals":[],"awards":[],"funders":[],"has_content":{"grobid_xml":false,"pdf":false},"content_urls":null,"referenced_works_count":18,"referenced_works":["https://openalex.org/W100592892","https://openalex.org/W175839174","https://openalex.org/W402406361","https://openalex.org/W569575361","https://openalex.org/W629611620","https://openalex.org/W653086118","https://openalex.org/W1611105536","https://openalex.org/W1693877936","https://openalex.org/W1987895232","https://openalex.org/W1989861176","https://openalex.org/W1994146145","https://openalex.org/W2006056208","https://openalex.org/W2027548841","https://openalex.org/W2049033242","https://openalex.org/W2070664721","https://openalex.org/W2340406763","https://openalex.org/W2340621053","https://openalex.org/W3146566705"],"related_works":["https://openalex.org/W4256374004","https://openalex.org/W2384723023","https://openalex.org/W4310892428","https://openalex.org/W2379320583","https://openalex.org/W2033357182","https://openalex.org/W2356973015","https://openalex.org/W3048948897","https://openalex.org/W2037111858","https://openalex.org/W2105642970","https://openalex.org/W330653092"],"abstract_inverted_index":{"With":[0],"the":[1],"popularity":[2],"of":[3,22,68],"electronic":[4],"commerce,":[5],"many":[6],"organizations":[7],"are":[8],"facing":[9],"unprecedented":[10],"security":[11,38,45,70,86,90],"challenges.":[12],"Security":[13],"techniques":[14],"and":[15,27,52,58,93,109],"management":[16,49,55,71,91,95],"tools":[17],"have":[18],"caught":[19],"a":[20,33,65,101],"lot":[21],"attention":[23],"from":[24],"both":[25],"academia":[26],"practitioners.":[28],"However,":[29],"there":[30],"is":[31,81],"lacking":[32],"theoretical":[34,103],"framework":[35],"for":[36,83,105],"information":[37,69,85,89],"management.":[39],"This":[40,73,97],"paper":[41,74],"attempts":[42],"to":[43,63],"integrate":[44],"policy":[46],"theory,":[47,50,54],"risk":[48],"control":[51],"auditing":[53],"system":[56,79],"theory":[57,60,67,80,98],"contingency":[59],"in":[61],"order":[62],"build":[64],"comprehensive":[66],"(ISM).":[72],"suggests":[75],"that":[76],"an":[77],"integrated":[78],"useful":[82],"understanding":[84],"management,":[87],"explaining":[88],"strategies,":[92],"predicting":[94],"outcomes.":[96],"may":[99],"lay":[100],"solid":[102],"foundation":[104],"further":[106],"empirical":[107],"research":[108],"application.":[110]},"counts_by_year":[{"year":2026,"cited_by_count":1},{"year":2025,"cited_by_count":4},{"year":2024,"cited_by_count":9},{"year":2023,"cited_by_count":7},{"year":2022,"cited_by_count":6},{"year":2021,"cited_by_count":7},{"year":2020,"cited_by_count":6},{"year":2019,"cited_by_count":5},{"year":2018,"cited_by_count":9},{"year":2017,"cited_by_count":5},{"year":2016,"cited_by_count":7},{"year":2015,"cited_by_count":8},{"year":2014,"cited_by_count":12},{"year":2013,"cited_by_count":7},{"year":2012,"cited_by_count":7}],"updated_date":"2026-03-17T09:09:15.849793","created_date":"2025-10-10T00:00:00"}