liu.seSearch for publications in DiVA
EnglishSvenskaNorsk
Change search
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • oxford
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf
Organizing control for preventive innovation: Internal control of ISO/IEC 27001 implementation in Swedish Data and IT companies
Linköping University, Department of Management and Engineering. Linköping University, Faculty of Arts and Sciences.
Linköping University, Department of Management and Engineering. Linköping University, Faculty of Arts and Sciences.
2022 (English)Independent thesis Advanced level (degree of Master (Two Years)), 20 credits / 30 HE creditsStudent thesis
Abstract [en]

Background: Bringing a deeper understanding of the research gap defined by the practical implication in the literature streams on standard and internal control particularly on the process of ISO/IEC 27001 implementation.

Aim: Investigating how the preventive innovation is being applied and controlled by IT and data organizations in Sweden in practice.

Methodology: A secondary desk study has been conducted which has been followed by a qualitative study with two top managers from companies in the IT security and Data management sector operating in Sweden. Qualitative study serves the purpose of identifying two different approaches in implementation of ISO/IEC 27001 standard from internal control perspective.

Findings: Standards, particularly ISO/IEC 27001 is not being applied in the same way in every organization. While for some companies namely private one it is important to be business-oriented, for governmental agencies it is administrative. Moreover, while discovering the role of human factor in Earhart AB where sustaining IT security and implementing ISO/IEC 27001 is coming from knowledge and awareness of employees it has also been identified that in GovSec Sweden AB it is more following rules and strengthening technical control in compared to Earhart AB. 
Place, publisher, year, edition, pages
2022. , p. 85
Keywords [en]
Preventive Innovation ∙ Internal Control∙ Standards∙ IT risks∙ ISO/IEC 27001
National Category
Business Administration
Identifiers
URN: urn:nbn:se:liu:diva-186672ISRN: LIU-IEI-FIL-A--22/03937--SEOAI: oai:DiVA.org:liu-186672DiVA, id: diva2:1678866
Subject / course
Master's Programme in Business Administration – SMIO
Presentation
2022-06-08, S41, 581 83 Linköping, Sweden, Linköping, 08:57 (English)
Supervisors
Examiners
Available from: 2022-08-29 Created: 2022-06-30 Last updated: 2022-08-29Bibliographically approved

Open Access in DiVA

attachment(1836 kB)116 downloads
File information
File name ATTACHMENT01.pdfFile size 1836 kBChecksum SHA-512
a09d608ccf9044a20a84805dcac83c3180b7199565a0e9566a28583616ecc8b61bed7c6503026d34010ffed719439ce167b8257365aecb9720284bc0dd11c09a
Type attachmentMimetype application/pdf

By organisation
Department of Management and EngineeringFaculty of Arts and Sciences
Business Administration

Search outside of DiVA

GoogleGoogle Scholar
The number of downloads is the sum of all downloads of full texts. It may include eg previous versions that are now no longer available

urn-nbn

Altmetric score

urn-nbn
Total: 218 hits
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • oxford
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf
v. 2.47.0
|
Accessibility
|
DiVA portal
|
DiVA Log in
|
Contact us
|
LiU University Library
|
SwePub
|
Uppsök