Extracting the Pattern of Information Security Governance Challenges in Information Sharing and Analysis Centers (ISAC)

Emerging cyber threats pose challenges to the critical infrastructure and national security of countries, making the establishment of Information Sharing and Analysis Centers (ISAC) a strategically vital response. Despite the significance of ISACs in enhancing cybersecurity, there are notable challenges in comprehending and effectively implementing Information Security Governance (ISG) within these centers. This article utilizes literature review, single-case study, and interviews with 22 prominent experts in the field of cybersecurity to extract and present the major challenges of ISG implementation in ISACs in the form of a model. The findings reveal that devising a comprehensive and effective ISG framework for ISACs is a highly intricate and dynamic task, influenced by the sensitivity and importance of their operations, and varying according to each country's specific circumstances. This research not only enhances understanding of security challenges within ISAC centers but also provides the presented model as a pivotal guide for corrective actions and strategic decisions in the realm of information security governance.