Measurement of Employee Information Security Awareness: Case Study at A Government Institution

摘要

Person awareness is an important factor in maintaining information security, especially within an organization. To have such awareness, support from management is essential to protect the company's assets from external threats. This study is conducted to evaluate the security awareness of employees in The Directorate General of Resources Management and Postal and Information Technology Equipment (SDPPI) of the Ministry of Communication and Information Technology (Kominfo). The study was conducted by performing structured interviews with senior management and distributing questionnaires to 28 employees of SDPPI related to security awareness. The information security awareness level assessment is calculated using Analytic Hierarchy Process (AHP) method. The results show that the level of information security awareness of the SDPPI Kominfo is in the "medium" level. Employees have low scores in some sub areas of information security awareness dimensions, thus it is required to make certain strategies in terms of business, technology and people to monitor and improve the level of information security awareness of employees.