SWOT Analysis of Information Security Management System ISO 27001
Akinyemi, I., Schatz, D. and Bashroush, R. 2020. SWOT Analysis of Information Security Management System ISO 27001. International Journal of Services Operations and Informatics. 10 (4), p. 305–329. https://doi.org/10.1504/IJSOI.2020.111297
|Akinyemi, I., Schatz, D. and Bashroush, R.
Information security is a main concern for many organisations with no signs of decreasing urgency in the coming years. To address this a structured approach is required, with the ISO 27000 series being one of the most popular practices for managing Information Security. In this work, we used a combination of qualitative research methods to conduct a SWOT analysis on the ISMS. The findings from the SWOT were then validated using a survey instrument. Finally, the results were validated and analysed using statistical methods. Our findings show that there was a generally positive view on the 'Strengths' and 'Opportunities' compared to that of 'Weaknesses' and 'Threats'. We identified statistically significant differences in the perception of 'Strengths' and 'Opportunities' across groups but also found that there is no significant variance in the perception of 'Threats'. The SWOT produced will help practitioners and researchers tailor ways to enhance ISMS using existing techniques such as TOWS matrix.
|International Journal of Services Operations and Informatics
|10 (4), p. 305–329
|Accepted author manuscript
|Digital Object Identifier (DOI)
|06 Nov 2020
|Publication process dates
|02 Nov 2020
|11 Nov 2020
|© 2020 Inderscience Enterprises Ltd.
65views this month
135downloads this month