{"id":"https://openalex.org/W2037111858","doi":"https://doi.org/10.1108/09685229310041893","title":"A Model for Information Security Management","display_name":"A Model for Information Security Management","publication_year":1993,"publication_date":"1993-03-01","ids":{"openalex":"https://openalex.org/W2037111858","doi":"https://doi.org/10.1108/09685229310041893","mag":"2037111858"},"language":"en","primary_location":{"id":"doi:10.1108/09685229310041893","is_oa":false,"landing_page_url":"https://doi.org/10.1108/09685229310041893","pdf_url":null,"source":{"id":"https://openalex.org/S204075876","display_name":"Information Management & Computer Security","issn_l":"0968-5227","issn":["0968-5227","1758-5805"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319811","host_organization_name":"Emerald Publishing Limited","host_organization_lineage":["https://openalex.org/P4310319811"],"host_organization_lineage_names":["Emerald Publishing Limited"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Information Management &amp; Computer Security","raw_type":"journal-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5020056259","display_name":"Rossouw von Solms","orcid":"https://orcid.org/0000-0002-9860-2346"},"institutions":[],"countries":[],"is_corresponding":true,"raw_author_name":"R. von Solms","raw_affiliation_strings":[],"affiliations":[]},{"author_position":"middle","author":{"id":"https://openalex.org/A5109345267","display_name":"S.H. von Solms","orcid":null},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"S.H. von Solms","raw_affiliation_strings":[],"affiliations":[]},{"author_position":"last","author":{"id":"https://openalex.org/A5078801480","display_name":"William Caelli","orcid":null},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"W.J. Caelli","raw_affiliation_strings":[],"affiliations":[]}],"institutions":[],"countries_distinct_count":0,"institutions_distinct_count":3,"corresponding_author_ids":["https://openalex.org/A5020056259"],"corresponding_institution_ids":[],"apc_list":null,"apc_paid":null,"fwci":0.0,"has_fulltext":false,"cited_by_count":8,"citation_normalized_percentile":{"value":0.24315488,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":89,"max":96},"biblio":{"volume":"1","issue":"3","first_page":"12","last_page":"17"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10734","display_name":"Information and Cyber Security","score":0.9624000191688538,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10734","display_name":"Information and Cyber Security","score":0.9624000191688538,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/information-security-management","display_name":"Information security management","score":0.8198876976966858},{"id":"https://openalex.org/keywords/security-information-and-event-management","display_name":"Security information and event management","score":0.7113932967185974},{"id":"https://openalex.org/keywords/security-management","display_name":"Security management","score":0.6437628865242004},{"id":"https://openalex.org/keywords/information-security","display_name":"Information security","score":0.6280113458633423},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.5792156457901001},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.5413508415222168},{"id":"https://openalex.org/keywords/security-convergence","display_name":"Security convergence","score":0.5365822911262512},{"id":"https://openalex.org/keywords/information-security-management-system","display_name":"Information security management system","score":0.5144834518432617},{"id":"https://openalex.org/keywords/information-security-standards","display_name":"Information security standards","score":0.4824143648147583},{"id":"https://openalex.org/keywords/itil-security-management","display_name":"ITIL security management","score":0.4808921813964844},{"id":"https://openalex.org/keywords/certified-information-security-manager","display_name":"Certified Information Security Manager","score":0.47619569301605225},{"id":"https://openalex.org/keywords/standard-of-good-practice","display_name":"Standard of Good Practice","score":0.46969130635261536},{"id":"https://openalex.org/keywords/computer-security-model","display_name":"Computer security model","score":0.4659505784511566},{"id":"https://openalex.org/keywords/context","display_name":"Context (archaeology)","score":0.4498721957206726},{"id":"https://openalex.org/keywords/risk-analysis","display_name":"Risk analysis (engineering)","score":0.4152998924255371},{"id":"https://openalex.org/keywords/risk-management","display_name":"Risk management","score":0.41500306129455566},{"id":"https://openalex.org/keywords/cloud-computing-security","display_name":"Cloud computing security","score":0.3896080255508423},{"id":"https://openalex.org/keywords/security-service","display_name":"Security service","score":0.379773885011673},{"id":"https://openalex.org/keywords/business","display_name":"Business","score":0.35639113187789917},{"id":"https://openalex.org/keywords/network-security-policy","display_name":"Network security policy","score":0.25933167338371277}],"concepts":[{"id":"https://openalex.org/C148976360","wikidata":"https://www.wikidata.org/wiki/Q1662500","display_name":"Information security management","level":5,"score":0.8198876976966858},{"id":"https://openalex.org/C103377522","wikidata":"https://www.wikidata.org/wiki/Q3493999","display_name":"Security information and event management","level":4,"score":0.7113932967185974},{"id":"https://openalex.org/C83163435","wikidata":"https://www.wikidata.org/wiki/Q3954104","display_name":"Security management","level":2,"score":0.6437628865242004},{"id":"https://openalex.org/C527648132","wikidata":"https://www.wikidata.org/wiki/Q189900","display_name":"Information security","level":2,"score":0.6280113458633423},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.5792156457901001},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.5413508415222168},{"id":"https://openalex.org/C52420254","wikidata":"https://www.wikidata.org/wiki/Q7445028","display_name":"Security convergence","level":5,"score":0.5365822911262512},{"id":"https://openalex.org/C111153917","wikidata":"https://www.wikidata.org/wiki/Q1662500","display_name":"Information security management system","level":5,"score":0.5144834518432617},{"id":"https://openalex.org/C139547956","wikidata":"https://www.wikidata.org/wiki/Q6031202","display_name":"Information security standards","level":5,"score":0.4824143648147583},{"id":"https://openalex.org/C114351632","wikidata":"https://www.wikidata.org/wiki/Q5974820","display_name":"ITIL security management","level":5,"score":0.4808921813964844},{"id":"https://openalex.org/C180823521","wikidata":"https://www.wikidata.org/wiki/Q1662502","display_name":"Certified Information Security Manager","level":5,"score":0.47619569301605225},{"id":"https://openalex.org/C47309137","wikidata":"https://www.wikidata.org/wiki/Q7598357","display_name":"Standard of Good Practice","level":5,"score":0.46969130635261536},{"id":"https://openalex.org/C121822524","wikidata":"https://www.wikidata.org/wiki/Q5157582","display_name":"Computer security model","level":2,"score":0.4659505784511566},{"id":"https://openalex.org/C2779343474","wikidata":"https://www.wikidata.org/wiki/Q3109175","display_name":"Context (archaeology)","level":2,"score":0.4498721957206726},{"id":"https://openalex.org/C112930515","wikidata":"https://www.wikidata.org/wiki/Q4389547","display_name":"Risk analysis (engineering)","level":1,"score":0.4152998924255371},{"id":"https://openalex.org/C32896092","wikidata":"https://www.wikidata.org/wiki/Q189447","display_name":"Risk management","level":2,"score":0.41500306129455566},{"id":"https://openalex.org/C184842701","wikidata":"https://www.wikidata.org/wiki/Q370563","display_name":"Cloud computing security","level":3,"score":0.3896080255508423},{"id":"https://openalex.org/C29983905","wikidata":"https://www.wikidata.org/wiki/Q7445066","display_name":"Security service","level":3,"score":0.379773885011673},{"id":"https://openalex.org/C144133560","wikidata":"https://www.wikidata.org/wiki/Q4830453","display_name":"Business","level":0,"score":0.35639113187789917},{"id":"https://openalex.org/C117110713","wikidata":"https://www.wikidata.org/wiki/Q3394676","display_name":"Network security policy","level":4,"score":0.25933167338371277},{"id":"https://openalex.org/C86803240","wikidata":"https://www.wikidata.org/wiki/Q420","display_name":"Biology","level":0,"score":0.0},{"id":"https://openalex.org/C10138342","wikidata":"https://www.wikidata.org/wiki/Q43015","display_name":"Finance","level":1,"score":0.0},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.0},{"id":"https://openalex.org/C79974875","wikidata":"https://www.wikidata.org/wiki/Q483639","display_name":"Cloud computing","level":2,"score":0.0},{"id":"https://openalex.org/C151730666","wikidata":"https://www.wikidata.org/wiki/Q7205","display_name":"Paleontology","level":1,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1108/09685229310041893","is_oa":false,"landing_page_url":"https://doi.org/10.1108/09685229310041893","pdf_url":null,"source":{"id":"https://openalex.org/S204075876","display_name":"Information Management & Computer Security","issn_l":"0968-5227","issn":["0968-5227","1758-5805"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319811","host_organization_name":"Emerald Publishing Limited","host_organization_lineage":["https://openalex.org/P4310319811"],"host_organization_lineage_names":["Emerald Publishing Limited"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Information Management &amp; Computer Security","raw_type":"journal-article"}],"best_oa_location":null,"sustainable_development_goals":[{"score":0.7599999904632568,"id":"https://metadata.un.org/sdg/13","display_name":"Climate action"}],"awards":[],"funders":[],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":0,"referenced_works":[],"related_works":["https://openalex.org/W2483557577","https://openalex.org/W2006056208","https://openalex.org/W1573253764","https://openalex.org/W2901877873","https://openalex.org/W2602294189","https://openalex.org/W2066297175","https://openalex.org/W2379320583","https://openalex.org/W2372545110","https://openalex.org/W2037111858","https://openalex.org/W151667467"],"abstract_inverted_index":{"Information":[0,9,42,47],"Security":[1,10,43,48],"Management":[2,49],"consists":[3,62],"of":[4,63,76],"various":[5,56],"facets,":[6],"for":[7,41],"example":[8],"Policy,":[11],"Risk":[12,14],"Analysis,":[13],"Management,":[15,44],"Contingency":[16],"Planning":[17],"and":[18,33,52],"Disaster":[19],"Recovery":[20],"which":[21],"are":[22],"all":[23,54],"interrelated":[24],"in":[25,58],"some":[26],"way.":[27],"These":[28],"interrelationships":[29],"often":[30],"cause":[31],"uncertainty":[32],"confusion":[34],"among":[35],"top":[36],"management.":[37],"Proposes":[38],"a":[39,69],"model":[40,61],"called":[45],"an":[46],"Model":[50],"(ISM\u22832)":[51],"puts":[53],"the":[55,74],"facts":[57],"context.":[59],"The":[60,85],"five":[64],"different":[65],"levels":[66],"defined":[67],"on":[68],"security":[70,78,82,94],"axis.":[71],"ISM\u22832":[72],"introduces":[73],"idea":[75],"international":[77,81],"criteria":[79],"or":[80],"standards":[83],"(baselines).":[84],"rationale":[86],"behind":[87],"these":[88],"baselines":[89],"is":[90],"to":[91,97],"enable":[92],"information":[93],"evaluation":[95],"according":[96],"internationally\u2010accepted":[98],"criteria.":[99]},"counts_by_year":[{"year":2022,"cited_by_count":2},{"year":2016,"cited_by_count":1},{"year":2014,"cited_by_count":1}],"updated_date":"2025-11-06T03:46:38.306776","created_date":"2025-10-10T00:00:00"}