[AISWorld] CFP: Information Security Governance, Compliance, and Risk Management at AMCIS 2016

[Herb Mattord]

Subject: CFP: Information Security Governance, Compliance, and Risk Management at AMCIS 2016 



WE WELCOME YOUR SUBMISSIONS to the Minitrack on Information Security Governance, Compliance, and Risk Management as part of AMCIS 2016: August 11-13 in San Diego, California 


Important Dates: 

    * January 4, 2016: Manuscript submissions for AMCIS 2016 begin 
    * March 2, 2016: AMCIS manuscript submissions closes for authors at 10:00am PST 

More information is available at http://amcis2016.aisnet.org/ or by contacting the minitrack chair (contact details below). 
As a mini track within the Special Interest Group on Information Systems Security, Assurance, and Privacy (SIGSEC) we are seeking high quality research papers for this track that This mini track seeks to solicit research from a those research areas including, but not limited to: a) Developments in enterprise information security governance structures and practices, b) Issues with effective compliance management, and c) Emerging practices and approaches to enterprise compliance. 


SUGGESTED TOPICS 
Authors are encouraged to submit original research that pertains to but not limited to the following areas: 
• Developments in governance of information security practices 
• Issues of leadership roles in information security organizations 
• Emergent issues of risk assessment and risk management for automated systems environments 
• Trends and practices in information security and privacy compliance 
• The evolution of insider threats 
• The impact of organizational culture on security policy compliance 
• User involvement in the development and implementation of security policies 
• Assessing the quality of information security policies 


Submission Process 
Full paper submissions must be made electronically through Manuscript Central. Papers will be peer reviewed using a double-blind system. 


Track Chairs: 
Herbert J. Mattord, Ph.D., Kennesaw State University, hmattord at kennesaw.edu 
David Sikolia, Ph.D., Illinois State University, dsikoli at ilstu.edu 
Michael E. Whitman, Ph.D., Kennesaw State University, mwhitman at kennesaw.edu 

Background: Information security control systems are most effective when framed within an organization that has structured governance and mature implementations to manage risk and assure compliance with internal and external mandates for security and privacy of information. Widely recognized as Governance, Risk Management and Compliance (or GRC), this area of study within the broader privacy and information security landscape seeks to address the increasing importance of activities associated with fulfilling directives for stakeholder alignment, interoperation of security governance with corporate governance, trends in governance approaches such as convergence of security functionality, issues in information security leadership, development in risk management models and practices, as well as issues of compliance to regulatory or ethical obligations.