Information security is everyone's concern. The way we live is underwritten by information system infrastructures, most notably the Internet. The functioning of our business organizations, the management of our supply chains, and the operation of our governments depend on the secure flow of information. In an organizational environment information security is a never-ending process of protecting information and the systems that produce it.This volume in the "Advances in Management Information Systems" series covers the managerial landscape of information security. It deals with how organizations and nations organize their information security policies and efforts. The book covers how to strategize and implement security with a special focus on emerging technologies. It highlights the wealth of security technologies, and also indicates that the problem is not a lack of technology but rather its intelligent application.

Edited by Straub (information systems, Georgia State U.), Goodman (international affairs and computing, Georgia Institute of Technology), and Baskerville (information systems, Robinson College of Business), this volume of Advances in Management Information Systems is the first of several to address issues of information security and as such it focuses on matters of policy, strategy, and processes necessary for the establishment of the overall security posture of an organization and leaves discussion of supportive technological and organizational measures for later volumes. Chapters address information technology governance and organizational design for security management, information system risk assessment and documentation, strategic information security risk management, and business continuity planning and the protection of informational assets. They also discuss the extra-organizational security setting for the United States and internationally, as well as emerging research trends.