naa a22 4500 510760007 CHVBK 20180411083136.0 cr unu---uuuuu 180411e20131201xx s 000 0 eng 10.1007/s12525-013-0137-3 doi (NATIONALLICENCE)springer-10.1007/s12525-013-0137-3 Information security governance practices in critical infrastructure organizations: A socio-technical and institutional logic perspective [Elektronische Daten] [Susan Williams, Catherine Hardy, Janine Holgate] Achieving a sustainable information protection capability within complex business, legal and technical environments is an integral part of supporting an organization's strategic and compliance objectives. Despite a growing focus on information security governance (ISG) it remains under-explored requiring greater empirical scrutiny and more contextually attuned theorizing. This study adopts an interpretive case approach and uses analytical lenses drawing from socio-technical systems and institutional logics to examine how ISG arrangements are framed and shaped in practice in fourteen Australian Critical Infrastructure Organizations. Our findings illustrate the heterogeneity and malleability of ISG across different organizations involving intra- and inter-organizational relationships and trust mechanisms. We identify the need to reframe ISG, adopting the new label information protection governance (IPG), to present a more multi-faceted view of information protection incorporating a richly layered set of social and technical aspects, that constitute and are constituted by governance arrangements. Institute of Information Management, University of St. Gallen, 2013 Information security governance nationallicence Information protection nationallicence Critical infrastructure nationallicence Interpretive case study nationallicence Institutional logics nationallicence Socio-technical systems nationallicence Williams Susan Institute for Information Systems Research, University of Koblenz-Landau, Universitätsstraße 1, 56070, Koblenz, Germany aut Hardy Catherine Discipline of Business Information Systems, University of Sydney, 2006, Sydney, NSW, Australia aut Holgate Janine Wipro Consulting Services, Wipro Technologies, Level 17, 201 Miller Street, North Sydney, Australia aut Electronic Markets Springer Berlin Heidelberg 23/4(2013-12-01), 341-354 1019-6781 23:4<341 2013 23 12525 https://doi.org/10.1007/s12525-013-0137-3 text/html Onlinezugriff via DOI 1 research-article jats NATIONALLICENCE 856 40 https://doi.org/10.1007/s12525-013-0137-3 text/html Onlinezugriff via DOI NATIONALLICENCE 700 1- Williams Susan Institute for Information Systems Research, University of Koblenz-Landau, Universitätsstraße 1, 56070, Koblenz, Germany aut NATIONALLICENCE 700 1- Hardy Catherine Discipline of Business Information Systems, University of Sydney, 2006, Sydney, NSW, Australia aut NATIONALLICENCE 700 1- Holgate Janine Wipro Consulting Services, Wipro Technologies, Level 17, 201 Miller Street, North Sydney, Australia aut NATIONALLICENCE 773 0- Electronic Markets Springer Berlin Heidelberg 23/4(2013-12-01), 341-354 1019-6781 23:4<341 2013 23 12525 Metadata rights reserved Springer special CC-BY-NC licence nationallicence BK010053 XK010053 XK010000 NATIONALLICENCE NATIONALLICENCE NL-springer