Empirical evaluation of a cloud computing information security governance framework

Oscar Rebolloa, Daniel Melladob, Eduardo Fernandez-Medinac, Haralambos Mouratidis

Research output: Contribution to journalArticlepeer-review


Cloud computing is a thriving paradigm that supports an efficient way to provide IT services by introducing on-demand services and flexible computing resources. However, significant adoption of cloud services is being hindered by security issues that are inherent to this new paradigm. In previous work, we have proposed ISGcloud, a security governance framework to tackle cloud security matters in a comprehensive manner whilst being aligned with an enterprise’s strategy.
Original languageEnglish
Pages (from-to)44-57
Number of pages14
JournalInformation and Software Technology
Publication statusPublished - 14 Oct 2014

Bibliographical note

© 2015, Elsevier. Licensed under the Creative Commons Attribution-NonCommercial-NoDerivatives 4.0 International http://creativecommons.org/licenses/by-nc-nd/4.0/


  • information security governance
  • case study
  • cloud computing
  • security governance framework
  • cloud lifecycle


Dive into the research topics of 'Empirical evaluation of a cloud computing information security governance framework'. Together they form a unique fingerprint.

Cite this