Recently, the necessity of systematic security management system that consider company' character and environment has appeared because of increasing security accident continuously in domestic companies. However, most of companies has applied to only K-ISMS which is existing information security management system, although They are different from object, purpose and way of security level evaluation by companies. According to this situation, Many experts have questioned that there are many problems with effectiveness of introducing security management system. In this study, We established definition of information security management system, industrial security management system and research security management system through analysis of previous study and developed evaluation item which can implement security in whole industry comparing and analyzing the control items of them. Also, we analyzed existing security level evaluation and suggest design direction of industry-centric security level evaluation model considering character of industry.
[1]
Chang Young Jin,et al.
Correlation Analysis in Information Security Checklist Based on Knowledge Network
,
2014
.
[2]
임종인,et al.
지식 네트워크에 근거한 정보보호 점검기준 관계분석
,
2014
.
[3]
Yang-Hoon Kim,et al.
The industrial security management model for SMBs in smart work
,
2014,
J. Intell. Manuf..
[4]
Jae Choi,et al.
A system dynamics model for information security management
,
2015,
Inf. Manag..
[5]
Chi-Seok Lee,et al.
An Analysis of Relationship between Industry Security Education and Capability: Case Centric on Insider Leakage
,
2015
.
[6]
Shuchih Ernest Chang,et al.
Organizational factors to the effectiveness of implementing information security management
,
2006,
Ind. Manag. Data Syst..