Using ITIL 4 in Security Management

Using ITIL 4 in Security Management

연구 분야: Safety

학회: 2020 8th International Symposium on Digital Forensics and Security (ISDFS)

Organizations of any size are tasked with managing security and risks of varying degrees of impact and complexity. Managing security can be one of the most intricate yet pervasive aspects of Information Technology Management. The service management philosophy that many organizations use is Information Technology Service Management (ITSM). Within ITSM, Information Technology Infrastructure Library (ITIL) is a set of best practices that can be used to manage security. The unique aspect of security incidents can be their sensitive nature. This sensitivity can complicate the management of security but does not preclude it from being managed in a way that is appropriate and effective for the organization. Due to the novelty of ITIL 4, there is a lack of research for effectively managing security incidents within an ITIL 4 framework. ITIL 4 represents a change in some of the core components of ITIL. This paper will examine how ITIL 4 can provide a framework for managing security.