Critical Success Factors for an Effective Security Risk Management Program: An Exploratory Case Study

View Sample PDF

Author(s): Jason A. Williams (Augusta University, USA), Humayun Zafar (Kennesaw State University, USA)and Saurabh Gupta (Kennesaw State University, USA)
Copyright: 2026
Volume: 20
Issue: 1
Pages: 18
Source title: International Journal of Information Security and Privacy (IJISP)
Editor(s)-in-Chief: Yassine Maleh (Sultan Moulay Slimane University, Morocco)and Ahmed A. Abd El-Latif (Menoufia University, Egypt)
DOI: 10.4018/IJISP.404388

Keywords: Information Science Reference / Information Security & Privacy / IT Security and Ethics / Security & Forensics

Purchase

View Critical Success Factors for an Effective Security Risk Management Program: An Exploratory Case Study on the publisher's website for pricing and purchasing information.

Abstract

This paper evaluates the perceived effectiveness of the security risk management (SRM) programs at a Fortune 500 firm. Layers of management and staff participated in the study. Perceived effectiveness of their SRM programs was based on nine critical success factors (CSFs). Interviews confirmed six initial CSFs (Executive Management Support, Organizational Maturity, Open Communication, Risk Management Stakeholders, Team Member Empowerment, and Holistic View of an Organization) that were extracted from the literature. They were confirmed and synthesized with three additional CSFs (Security Maintenance, Corporate Security Strategy, and Human Resource Development). Implications for SRM are discussed.

The IRMA Community

Research IRM

Critical Success Factors for an Effective Security Risk Management Program: An Exploratory Case Study

Purchase

Abstract

Related Content

IRMA Sponsors