Toggle Main Menu Toggle Search

Open Access padlockePrints

State of the art of IT outsourcing and future needs for managing its security risks

Lookup NU author(s): Moneef Almutairi, Dr Stephen RiddleORCiD


Full text for this publication is not currently held within this repository. Alternative links are provided below where available.


© 2018 IEEE. It is very common for different organizations around the globe to outsource their IT services partially or totally using a third party. IT Outsourcing is a promising business practice that could offer organizations different benefits such as cost reductions, concentration on core business activities, flexibility and quality improvement. Despite the enormous benefits that can be offered to organizations by outsourcing, it might expose organizations to different risks such as security risks and contract violations. In this paper, we explore the outsourcing business practice, its benefits, risks, and all other processes and arrangements associated with it. We provide several recommendations for managing the security risks of IT outsourcing effectively, such as aligning security management with project management, establishing a comprehensive methodology for managing security requirements, managing security risks from different perspectives, managing compliance, and improving flexibility and usability. We also provide a general framework for security risks management in outsourcing context.

Publication metadata

Author(s): Almutairi M, Riddle S

Publication type: Conference Proceedings (inc. Abstract)

Publication status: Published

Conference Name: International Conference on Information Management and Processing (ICIMP 2018)

Year of Conference: 2018

Pages: 42-48

Online publication date: 29/03/2018

Acceptance date: 02/04/2016

Publisher: IEEE


DOI: 10.1109/ICIMP1.2018.8325839

Library holdings: Search Newcastle University Library for this item

ISBN: 9781538636565