Title: Information security and information technology governance: a Malaysian case study

Authors: Kamarulzaman Ab. Aziz, Mariati Binti Norhashim, Elisa Mardiana Halim

Addresses: Faculty of Management, Multimedia University, Persiaran Multimedia, 63100 Cyberjaya, Malaysia. ' Faculty of Management, Multimedia University, Persiaran Multimedia, 63100 Cyberjaya, Malaysia. ' Faculty of Management, Multimedia University, Persiaran Multimedia, 63100 Cyberjaya, Malaysia

Abstract: Prudential Private Limited Company (PLC) is a company incorporated in England, with its head office in London. With its affiliated companies, Prudential constitutes one of the world|s leading insurance and financial services group. Prudential|s international retail financial services group has significant operations in Asia, the USA and the UK. This paper reviews the IT governance policies and procedures practiced in Prudential Malaysia in mitigating its IT-related risks. This paper describes key information concerning IT governance and information security, such as the characteristics of IT governance and information security, the guidelines, policies and tools used and the issues faced by organisations in realising a |healthy| level of its related controls.

Keywords: information security; information technology; IT governance; Prudential Malaysia; risk reduction; technology risks.

DOI: 10.1504/IJMP.2011.039204

International Journal of Management Practice, 2011 Vol.4 No.4, pp.331 - 344

Published online: 25 Mar 2011 *

Full-text access for editors Full-text access for subscribers Purchase this article Comment on this article