Are the levels of information risk management efforts within and between firms correlated with the resilience of the firms to information disruptions? This paper examines the question by considering the results of field studies of information risk management practices at organizations and in supply chains. The organizations investigated differ greatly in the degree of coupling from a general and information risk management standpoint, as well as in the levels of internal awareness and activity regarding information risk management. The comparison of the levels of information risk management in the firms and their actual or inferred resilience indicates that a formal information risk management approach is not necessary for resilience in certain sectors. © IFIP International Federation for Information Processing 2009.
CITATION STYLE
Dynes, S. (2009). Information risk management and resilience. In IFIP Advances in Information and Communication Technology (Vol. 311, pp. 3–17). https://doi.org/10.1007/978-3-642-04798-5_1
Mendeley helps you to discover research relevant for your work.