Date Added: Dec 2010
Contemporary organisations are at infancy stages of adopting IT governance processes in Australia. Organisations who have adopted these processes underestimate the security processes within the governance framework. If the security processes are designed, they are often flawed with operational level implementation. This paper investigates IT security governance broadly and in Australian organisations specifically. The objective of this paper is to bring the local organisations in alignment with international standards and frameworks in terms of integration of information security, IT audits, risks and control measures.