Guest Editorial: the challenge of managing information security

doi:10.1016/j.ijinfomgt.2003.12.002

International Journal of Information Management

Volume 24, Issue 1, February 2004, Pages 3-4

https://doi.org/10.1016/j.ijinfomgt.2003.12.002 Get rights and content

References (0)

Cited by (10)

Centralized end-to-end identity and access management and ERP systems: A multi-case analysis using the technology organization environment framework
2014, International Journal of Accounting Information Systems
Citation Excerpt :
Establishing policies and processes to support the implementation and security of ERP can be challenging, yet our findings suggest such governance is necessary and greatly influences CIAM. For example, when involved in an ERP implementation or upgrade, IT managers should ensure that adequate funds are included for CIAM implementation or upgrade and not leave security as an “afterthought” (Dhillon, 2004). Although we gained much insight from this study, there are limitations.
System security is a top issue facing global organizations. This study investigates the constraints and benefits of a successful centralized end-to-end identity and access management (CIAM) implementation and the moderating role that ERP systems have in the implementation. We apply the Technology Organization Environment (TOE) framework to a case study approach. We find that organizational and technological factors result in lapses in IT governance and act as barriers to CIAM. Environmental factors also hinder CIAM implementation. Additionally, ERP systems facilitate the development of a CIAM due to integration and standardization of identities and automated provisioning. When the ERP system supports CIAM, the organization and its employees experience significant benefits including single sign-on capabilities, increased security and privacy, efficiencies in user provisioning and password management, and audit process improvement. Our results will be of value to any organization implementing CIAM and ERP. Researchers can also use our findings to further study IAM, ERP or extensions to the TOE framework.
The impact of social constructivism on ERP systems security: A critical social review
2014, Proceedings of 12th Australian Information Security Management Conference, AISM 2014
Shaping security behaviour through discipline and agility: Implications for information security management
2011, Information Management and Computer Security
Operations in financial services - An overview
2010, Production and Operations Management
Do information security policies reduce the incidence of security breaches: An exploratory analysis
2008, Social and Human Elements of Information Security: Emerging Trends and Countermeasures
Mastering the art of corroboration: A conceptual analysis of information assurance and corporate strategy alignment
2007, Journal of Enterprise Information Management

View all citing articles on Scopus

View full text

International Journal of Information Management

Special SectionGuest Editorial: the challenge of managing information security

Centralized end-to-end identity and access management and ERP systems: A multi-case analysis using the technology organization environment framework

The impact of social constructivism on ERP systems security: A critical social review

Shaping security behaviour through discipline and agility: Implications for information security management

Operations in financial services - An overview

Do information security policies reduce the incidence of security breaches: An exploratory analysis

Mastering the art of corroboration: A conceptual analysis of information assurance and corporate strategy alignment

Special Section
Guest Editorial: the challenge of managing information security