Defining organisational information security culture—Perspectives from academia and industry

Adele da Veiga; Liudmila V. Astakhova; Adele Botha; Marlien Herselman

首页> 外文期刊>Computers & Security >Defining organisational information security culture—Perspectives from academia and industry

【24h】

Defining organisational information security culture—Perspectives from academia and industry

机译：定义组织信息安全文化—来自学术界和行业的观点

获取原文

获取原文并翻译 | 示例

掌桥外文数据库（机构版） >>

开具论文收录证明 >>

文献代查 >>

页面导航

摘要
著录项
相似文献
相关主题

摘要

The ideal or strong information security culture can aid in minimising the threat of humans to information protection and thereby aid in reducing data breaches or incidents in organisations. This research sets out to understand how information security culture is defined from an academic and industry perspective using a mixed-method approach. The definition, factors necessary to instil the ideal information security culture and the potential impact of the ideal information security culture were investigated from both perspectives. A survey approach was implemented to obtain the views from industry and 512 respondents from organisations, many of which operate at an international level, participated in the survey. The research presents a description of information security culture, integrating the existing literature and expanding on it with the views of industry, thereby giving clarity to the concept. The ideal information security culture was identified with the top traits relating to aspects such as an aware and knowledgeable workforce implementing conscientious, caring behaviour to comply with policies as guided by management. The factors that could positively influence an information security culture were identified, consolidated and expanded to five external factors and twenty internal factors. Organisations that have a strong information security culture were identified as achieving mutual trust and integrity through the protection of their information. The description of an information security culture can be used as a baseline to define and understand the concept, identify a single, comprehensive set of factors to be implemented, comprehend the traits of such a culture, as well as what an organisation can achieve by having a strong information security culture. The analysis showed that scientific interpretations of the definitions and factors of information security culture are much wider than their understanding of the industry. Both the results from the scoping review of papers and the feedback from the industry experts are synthesised visually to provide an organisational information security culture model (OISCM). The definition, factors, and model that influence the organisational culture of information security, have prognostic value for industry. For scientists, this is an important topic of research on methods and forms of increasing the level of this knowledge.

机译：理想的或强有力的信息安全文化可以帮助最大程度地减少人类对信息保护的威胁，从而有助于减少组织中的数据泄露或事件。这项研究着手了解如何使用混合方法从学术和行业角度定义信息安全文化。两种观点都研究了定义，理想信息安全文化所必需的因素以及理想信息安全文化的潜在影响。实施了调查方法以获取行业意见，并且来自组织（其中许多组织在国际层面上）的512位受访者参加了调查。该研究对信息安全文化进行了描述，整合了现有文献并以行业观点对其进行了扩展，从而使该概念更为清晰。理想的信息安全文化具有与以下方面有关的主要特征，例如，有意识和知识的员工实施认真，关怀的行为以遵守管理层指导的政策。确定并巩固了可能对信息安全文化产生积极影响的因素，并将其扩展为五个外部因素和二十个内部因素。具有强大信息安全文化的组织被确定为通过保护其信息来实现相互信任和完整性。信息安全文化的描述可以用作基线，以定义和理解概念，确定要实施的单一，全面的因素集，理解这种文化的特征以及组织可以通过拥有强大的信息安全文化。分析表明，对信息安全文化的定义和因素的科学解释要比对行业的理解要广得多。范围界定审查的结果和行业专家的反馈都以视觉方式进行了综合，以提供组织信息安全文化模型（OISCM）。影响信息安全组织文化的定义，因素和模型对行业具有预后价值。对于科学家而言，这是研究提高知识水平的方法和形式的重要课题。

著录项

来源
《Computers & Security》 |2020年第5期|101713.1-101713.23|共23页
作者
Adele da Veiga; Liudmila V. Astakhova; Adele Botha; Marlien Herselman;
展开▼
作者单位

School of Computing College of Science Engineering and Technology University of South Africa (UNISA) Florida Campus Johannesburg South Africa;

Department of Information Security School of Electronic Engineering and Computer Science South Ural State University (National Research University) Chelyabinsk Russia;

Next Generation Enterprises and Institutions CSIR Pretoria and School 0/ Computing College of Science Engineering and Technology University of South Africa (UNISA) Florida Campus Johannesburg South Africa;

展开▼
收录信息美国《科学引文索引》(SCI);美国《工程索引》(EI);
原文格式 PDF
正文语种 eng
中图分类
关键词
Information security culture; Definition; Factors; Impact; Human; Key traits; Model;

机译：信息安全文化;定义;因素;影响;人类主要特征;模型;

相似文献

外文文献
中文文献
专利

1. Enhancing Security Culture through User-Engagement: An Organisational Perspective [J] . Said Jafari International Journal of ICT Research and Development in Africa . 2017,第1期

机译：通过用户参与增强安全文化：组织视角
2. Organisational security culture: Extending the end-user perspective [J] . A.B. Ruighaver, S.B. Maynard, S. Chang Computers & Security . 2007,第1期

机译：组织安全文化：扩展最终用户视角
3. Academia-pharma intersect: providing a broader perspective on drug development synergies between academia and industry. [J] . Chabner BA The oncologist . 2010,第1期

机译：学术界与制药界的交汇：为学术界和工业界之间的药物开发协同增效提供了更广阔的视野。
4. What is Security Culture? Does it differ in content from general Organisational Culture? [C] . Jo Malcolmson Annual International Carnahan Conference on Security Technology . 2009

机译：什么是安全文化？一般组织文化的内容是否有所不同？
5. Academia and industry perspectives on leadership and human resource development competencies required for agricultural leadership graduate students pursuing industry careers. [D] . Jones, Laikhe Tanyara. 2004

机译：学术界和行业对领导力和人力资源开发能力的看法，这些都是农业领导力研究生追求行业职业所需的。
6. Academia–Pharma Intersect: Providing a Broader Perspective on Drug Development Synergies between Academia and Industry [O] . Bruce A. Chabner 2010

机译：学术界与制药界的交叉：为学术界与工业界之间的药物开发协同增效提供更广阔的视野
7. Home > All Content > Vol 50, No 1 (2019) Exploring Research–Policy Partnerships in International Development Cover Page Edited by: James Georgalakis and Pauline Rose June 2019 Volume 50 Issue 1 This issue aims to identify how partnerships focused on the production of policy-engaged research seek to achieve societal impact and explores the challenges in these processes. The collaborations analysed span academia, civil society and government, from the grassroots to the national and global levels. By locating these examples within the broader debates on interactions between researchers and research users designed to strengthen evidence informed decision making, this publication offers concepts and practices to inform those funding, designing and undertaking development research. The featured case studies are explored through the perspectives of both researchers and their partners in civil society and policy. They are predominantly taken from a diverse portfolio of research projects funded through the UK’s Economic and Social Research Council (ESRC) and the Department for International Development (DFID) Strategic Partnership. A collaboration with the Impact Initiative, this IDS Bulletin is essential reading for all those in research organisations, development agencies and donors committed to the better use of evidence and learning for development. Exploring Research–Policy Partnerships in International Development James Georgalakis, Pauline Rose DOI: 10.19088/1968-2019.100 ABSTRACT FULL ISSUE PDF Foreword Diana Dalton DOI: 10.19088/1968-2019.102 ABSTRACT PDFONLINE ARTICLE Introduction: Identifying the Qualities of Research–Policy Partnerships in International Development – A New Analytical Framework James Georgalakis, Pauline Rose DOI: 10.19088/1968-2019.103 ABSTRACT PDFONLINE ARTICLE Rethinking Research Impact through Principles for Fair and Equitable Partnerships Kate Newman, Sowmyaa Bharadwaj, Jude Fransman DOI: 10.19088/1968-2019.104 ABSTRACT PDFONLINE ARTICLE Pathways to Impact: Insights from Research Partnerships in Uganda and India Rachel Hinton, Rona Bronwin, Laura Savage DOI: 10.19088/1968-2019.105 ABSTRACT PDFONLINE ARTICLE Exploring Partnerships between Academia and Disabled Persons’ Organisations: Lessons Learned from Collaborative Research in Africa Maria Kett, Mark T. Carew, John-Bosco Asiimwe, Richard Bwalya, Anderson Gitonga, Boakai A. Nyehn, Joyce Olenja, Leslie Swartz, Nora Groce DOI: 10.19088/1968-2019.106 ABSTRACT PDFONLINE ARTICLE Layered and Linking Research Partnerships: Learning from YOUR World Research in Ethiopia and Nepal Vicky Johnson, Anannia Admassu, Andrew Church, Jill Healey, Sujeeta Mathema DOI: 10.19088/1968-2019.107 ABSTRACT PDFONLINE ARTICLE Fundamental Challenges in Academic–Government Partnership in Conflict Research in the Pastoral Lowlands of Ethiopia Mercy Fekadu Mulugeta, Fana Gebresenbet, Yonas Tariku, Ekal Nettir DOI: 10.19088/1968-2019.108 ABSTRACT PDFONLINE ARTICLE Regional Research–Policy Partnerships for Health Equity and Inclusive Development: Reflections on Opportunities and Challenges from a Southern African Perspective [O] . Nicola Yeates, Themba Moeti, Mubita Luwabelwa 2019

机译：主页>所有内容> Vol 50，第1号（2019年）探索国际发展顾客的研究 - 政策伙伴关系：詹姆斯格拉巴拉斯和波雷琳上升2019年6月50卷第1卷这个问题旨在确定合作伙伴关系如何关注政策的生产。 - 繁殖的研究寻求实现社会影响并探索这些过程中的挑战。合作分析了跨度学术界，民间社会和政府，从基层到国家和全球层面。通过在研究人员和研究用户之间的相互作用的更广泛辩论中找到这些示例，旨在加强证据明智的决策，本出版物提供了通知这些资金，设计和开发研究的概念和实践。通过研究人员及其合作伙伴在民间社会和政策的角度来看，探讨了特色案例研究。它们主要从英国经济和社会研究委员会（ESRC）和国际发展部（DFID）战略伙伴部资助的各种研究项目组合中获取。与影响计划的合作，此IDS公告是研究组织，发展机构和捐助者致力于更好地利用证据和学习发展的所有人的重要阅读。探索研究 - 在国际发展中的研究 - 政策伙伴关系James Georgalakis，Pauline Rose Doi：10.19088 / 1968-2019.100 Abstract完整发行PDF前言戴安娜DALTON DOI：10.19088 / 1968-2019.102抽象PDFONLINE文章简介：确定国际发展中研究政策伙伴关系的质量 - 新的分析框架詹姆斯·乔治拉斯·罗琳·罗拉克斯：10.19088 / 1968-2019.103抽象Pdfonline文章通过公平和公平合作伙伴关系的原则重新思考研究影响凯特纽曼，Sowmyaa Bharadwaj，Jude Fransman Do：10.19088 / 1968-2019.104抽象Pdfonline文章途径影响：来自乌干达和印度Rachel Hinton，RONA Bronwin，Laura Bronwin的研究伙伴关系的见解：10.19088 / 1968-2019.105抽象的PDFonline文章探讨了学术界和残疾人士组织之间的伙伴关系：从非洲玛丽亚凯特的合作研究中吸取的经验教训。克鲁，约翰 - 博斯科阿斯蒂姆韦，理查德Bwalya，安德rson gitonga，Boakai A. Nyehn，Joyce Olenja，Leslie Swartz，Nora Groce Doi：10.19088 / 1968-2019.106 Abstract Pdfonline文章分层和链接研究合作伙伴关系：从您的世界研究中学习在埃塞俄比亚和尼泊尔Vicky Johnson，Anannia Admassu，安德鲁教堂的世界研究， JILL HEALELY，SUJETA MATHEMA DOI：10.19088 / 1968-2019.107抽象PDFONLINE文章在学术界政府伙伴关系中的基本挑战在冲突研究中埃塞俄比亚牧场的牧区牧场地区牧羊犬MULUGETA，宇瓦·塔利克（Ekal Nettir Doi：10.19088 / 1968-2019.108摘要PDFONLINE文章区域研究 - 健康股权和包容性发展的政策伙伴关系：关于南部非洲观点的机遇和挑战的思考

Defining organisational information security culture—Perspectives from academia and industry

摘要

著录项

相似文献

相关主题

期刊订阅