Paper Title
A Framework for Achieving Collaboration in Managing Information Security Through Multisourcing
Abstract
Purpose: As information security requirements evolve due to ever-changing business and regulatory requirements, and threat landscape, organisations have turned to multisourcing as a method of delivering information security services. This development has created opportunities for service providers which specialise in information security service provision to collaborate and deliver security services through multisourcing contracts. Therefore the research develops a collaboration framework for managing information security through multisourcing.
Methodology: This paper explores collaboration in multisourcing information security contracts through a qualitative case study that investigated the phenomenon from the views and experiences of a client organisation and its six service providers.
Findings: The research found that multisourcing contracts can effectively manage information security services through collaborative efforts from multiple service providers and technology vendors.
Practical Implications: Theoretical insights into the use of collaboration and partnerships in the multisourcing of information security are non-existent. Therefore, the research contributes to practice by introducing a tripartite collaboration framework for multisourcing information security.
Originality value: The research demonstrates through the perspective of client organisation and service providers that collaboration in multisourcing information security contracts goes beyond the client and its service providers to include even technology vendors.
Keywords: Multisourcing; Information security; Outsourcing; Knowledge sharing; Collaboration; Partnerships; Alliance. Paper type: Research paper