Anass Rabii, Saliha Assoul, Khadija Ouazzani Touhami and Ounsa Roudies
This paper aims to clarify the uncertainty reflected in the current state of information security maturity evaluation where it has not enough matured and converged so that a…
Abstract
Purpose
This paper aims to clarify the uncertainty reflected in the current state of information security maturity evaluation where it has not enough matured and converged so that a generic approach or many specfics approaches become the go-to choice. In fact, in the past decade, many secruity maturity models are still being produced and remain unproven regardless of the existence of ISO 21827.
Design/methodology/approach
The authors have used the systematic literature review to summarize existing research, help identify gaps in the existing literature and provide background for positioning new research studies.
Findings
The authors highlighted the prevalent influence of the ISO/IEC 27001/27002 standard but raised the necessity for an in-depth investigation of ISO 21827. The authors also made the implementation facet a central topic of our review. The authors found out that, compared to the number of proposed models, implementation experiments are lacking. This could be due to the arduous task of validation and it could also be the reason why specific models are dominant.
Originality/value
While the research literature contains many experience reports and a few case studies on information security maturity evaluation, a systematic review and synthesis of this growing field of research is unavailable as far as the authors know. In fact, the authors only picked-up one bodywork [Maturity models in cyber security A systematic review (2017)] carrying out a literature review on security maturity models between 2012 and 2017, written in Spanish.
Details
Keywords
Saadia Saadi, Mébarek Djebabra, Ounsa Roudies and Wafa Boulagouas
The purpose of this paper is to deal with the allocation requirements of the dependability of the multiphase systems.
Abstract
Purpose
The purpose of this paper is to deal with the allocation requirements of the dependability of the multiphase systems.
Design/methodology/approach
It consists of a proposal for a combined methodology based on the simultaneous use of decomposition systems and reliability allocation method.
Findings
In the developed methodology, the authors use the principles of risk assessment and propose a new formulation of weight allowance with reference to the structural‒functional dependence.
Practical implications
The suggested methodology provides invaluable help to implementation process analysis.
Originality/value
The adopted allocation approach is based on the use of a three-dimensional model: temporal, structural and functional decomposition of systems.