In-House Standardization of Security Measures: Necessity, Benefits and Real-world Obstructions

摘要

The business demands cost reduction, flexible sourcing and customary quality when it comes to getting IT services. Internal and external IT service providers must therefore industrialize their IT production. Industrialization in turn requires standardization of all components in modern IT production. This includes standardizing the security measures that are used to protect the IT service provisioning. Areas and elements are identified that can be standardized. Needs and benefits are described for each. Additionally, this study focuses on real-world obstacles which need to be considered and surmounted in order to secure IT services in an efficient and flexible way. Practical advice is provided to support the standardization of security measures used in-house to protect IT services.