A Systematic Review of Information Security Governance Frameworks in the Cloud Computing Environment
Oscar Rebollo (Ministry of Labour and Immigration, Spain)
Daniel Mellado (University of Castilla-La Mancha, Spain)
Eduardo Fernández-Medina (University of Castilla-La Mancha, Spain)
Abstract: The senior management of any enterprise that plans to start using Cloud Computing services needs to define a clear governance strategy with regard to the security of its information assets. This paper presents a systematic literature review whose objective is to seek existing Information Security Governance frameworks that may assist companies with these functions. The analysis of the frameworks extracted is complemented with a set of comparative criteria that consider the particularities of Cloud Computing when dealing with security governance issues.
Keywords: cloud computing, information security governance, systematic literature review
Categories: C.2.4, K.6, K.6.5