scholarly journals Security Policy Management Process within Six Sigma Framework

2012 ◽  
Vol 03 (01) ◽  
pp. 49-58 ◽  
Author(s):  
Vijay Anand ◽  
Jafar Saniie ◽  
Erdal Oruklu
Keyword(s):  
Six Sigma ◽  
Security Policy ◽  
Management Process ◽  
Policy Management

scholarly journals An Authorisation Policy Management Model in Federations

2018 ◽  
Vol 34 (1) ◽  
Author(s):  
Vu Ngoc Cham ◽  
Nguyen Tuan Anh
Keyword(s):  
Security Policy ◽  
Management Model ◽  
Management Process ◽  
Policy Management ◽  
Dynamic Security ◽  
Access Rights ◽  
Ultimate Control

A federation is usually an alliance of organisations where users from one organisation are trusted to access resources in another organisation. The membership of federations is diverse and continually changing. Federations require distributed and dynamic security policy management to meet these challenges. We propose an authorisation policy management model, FABACD, which simplifies the management of collaborations between organisations. It allows distributed and trusted administrators to adjust the authorisation policies in a resource holding organisation, whilst ensuring that the latter remains in ultimate control. The net result is that a resource’s authorisation system is able to use user credentials built from preexisting attributes issued by any participating organisation, in order to determine a user’s access rights to the various resources, without requiring credentials to be issued that are based on federation specific attributes. The model significantly simplifies the authorisation management process for the resource holding organisation.

The hunt for computerized support in information security policy management

2020 ◽  
Vol 28 (2) ◽  
pp. 215-259 ◽  
Author(s):  
Elham Rostami ◽  
Fredrik Karlsson ◽  
Ella Kolkowska
Keyword(s):  
Information Security ◽  
Research Methods ◽  
Security Policy ◽  
Critical Discussion ◽  
Future Research ◽  
Management Process ◽  
Management Research ◽  
Information Security Policy ◽  
Content Type ◽  
Literature Reviews

Purpose The purpose of this paper is to survey existing information security policy (ISP) management research to scrutinise the extent to which manual and computerised support has been suggested, and the way in which the suggested support has been brought about. Design/methodology/approach The results are based on a literature review of ISP management research published between 1990 and 2017. Findings Existing research has focused mostly on manual support for managing ISPs. Very few papers have considered computerised support. The entire complexity of the ISP management process has received little attention. Existing research has not focused much on the interaction between the different ISP management phases. Few research methods have been used extensively and intervention-oriented research is rare. Research limitations/implications Future research should to a larger extent address the interaction between the ISP management phases, apply more intervention research to develop computerised support for ISP management, investigate to what extent computerised support can enhance integration of ISP management phases and reduce the complexity of such a management process. Practical implications The limited focus on computerised support for ISP management affects the kind of advice and artefacts the research community can offer to practitioners. Originality/value Today, there are no literature reviews on to what extent computerised support the ISP management process. Findings on how the complexity of ISP management has been addressed and the research methods used extend beyond the existing knowledge base, allowing for a critical discussion of existing research and future research needs.

Study on the Policy System in Eco-Industrial Parks in China

2014 ◽  
Vol 522-524 ◽  
pp. 1776-1781
Author(s):  
Yue Zhang ◽  
Yang Yao ◽  
Qi Qiao
Keyword(s):  
Security Policy ◽  
Industrial Park ◽  
Policy Management ◽  
Policy System ◽  
Industrial Parks ◽  
Guidance Policy ◽  
Four Levels

The eco-industrial park policies in China including central and local ones are inadequate to support and regulate the construction of EIP. Based on the practical construction demands, this article establish the EIP policy system, which is divided into four levels, including EIP policy system, macro guidance policy, management, construction and security policy and specific branches segment policies in every aspect.

Assessing the change process of Lean Six Sigma: a case analysis

2014 ◽  
Vol 5 (4) ◽  
pp. 423-443 ◽  
Author(s):  
Suriya Lertwattanapongchai ◽  
Fredric William Swierczek
Keyword(s):  
Change Management ◽  
Six Sigma ◽  
Change Process ◽  
Success Factors ◽  
Case Analysis ◽  
Lean Six Sigma ◽  
Project Design ◽  
Management Process ◽  
Content Type ◽  
Effective Combination

Purpose – This paper aims to present an integrative conceptual framework of Lean Six Sigma (LSS) as a project and an organizational change process. To assess the process, the LSS success factors are identified. Their impact on both project outcomes and people is determined. Design/methodology/approach – An in-depth review of success factors resulted in a set of indicators related both to the LSS factors and to the change process. A comparative case analysis of three multinational companies (MNCs) implementing LSS in Thailand is presented. The indicators were used to identify patterns in the cases related to effective implementation through content analysis. Findings – The case analysis showed that an effective combination of a strong LSS project design and a comprehensive change management process achieved positive impacts in business results, employee learning and job satisfaction. Practical implications – To be successful LSS cannot only focus on a good project design. Champions and key practitioners must also apply best practices in change management. Originality/value – There are few examples of the integration of LSS project design and the change management process in Asia. Additionally, the case analysis focuses on examples of MNC operations in Thailand. The research supported the importance of integrating change management and project management for success.

Sign in / Sign up

Export Citation Format

Share Document