Journal of Advanced Computer Science and Technology Research, Vol 8 No 2, June 2018, 67 - 81 INFORMATION SECURITY GOVERNANCE FRAMEWORKS IN CLOUD COMPUTING AN OVERVIEW Muhaned Al-hashimi 1 , Marini Othman 2 , Hidayah Sulaiman 3 , A. A. Zaidan 4 1 Department of Basic Science Branch, College of Dentistry, Tikrit University, Salah Al Din Governorate, Iraq 2,3 Information Systems Department, College of Information Technology, Universiti Tenaga Nasional, Malaysia 4 Department of Computing, Faculty of Arts, Computing and Creative Industry, Universiti Pendidikan Sultan Idris, Malaysia muhaned@tu.edu.iq, marini@uniten.edu.my, hidayah@uniten.edu.my, aws.alaa@gmail.com ISSN (Printed): 2314-7350 ISSN (Online): 2231-8852 ABSTRACT Although cloud computing creates new opportunities, it also creates new risks. Key to the successful adoption and transition of information systems to cloud is the implementation of a strategic proactive information security management and governance framework. Information security governance framework can help inform agency leaders, information security professionals, and information security governance participants on how to move into cloud environment without excessive information security risk or potential legal and regulatory compliance failures. However, very few sound ISG frameworks exist that can effectively guide most organizations in their ISG endeavors. This paper provides an overview of current information security governance frameworks in cloud computing, and demonstrates the stages and activities of a security governance framework. The paper also introduces the current efforts of evaluating these frameworks. Key words: Cloud computing, Information security governance, Governance framework