Abstract

ABSTRACT Information security culture develops in an organization due to certain actions taken by the organization. Management implements information security components, such as policies and technical security measures with which employees interact and that they include in their working procedures. Employees develop certain perceptions and exhibit behavior, such as the reporting of security incidents or sharing of passwords, which could either contribute or be a threat to the securing of information assets. To inculcate an acceptable level of information security culture, the organization must govern information security effectively by implementing all the required information security components. This article evaluates four approaches towards information security governance frameworks in order to arrive at a complete list of information security components. The information security components are used to compile a new comprehensive Information Security Governance framework. The proposed governance framework can be used by organizations to ensure they are governing information security from a holistic perspective, thereby minimising risk and cultivating an acceptable level of information security culture.

Full Text
Paper version not known

Talk to us

Join us for a 30 min session where you can share your feedback and ask us any queries you have

Schedule a call

Similar Papers

Paper Title
Journal
Date
Author
The Implementation of Multiple Information Security Governance (ISG) Frameworks Strategy and Critical Success Factors in Indonesia’s Oil and Gas Industry: Case Study of PT X
Bob Hardian Syahbuddin ... Kongkiti Phusavat
Jurnal Sistem Informasi | VOL. 16
Bob Hardian Syahbuddin, et. al.Bob Hardian Syahbuddin ... Kongkiti Phusavat
31 Oct 2020
Security Issues for Banking Systems
Mohammed Khodayer Hassan ... Aymen Mohammed Khodayer
-
Mohammed Khodayer Hassan, et. al.Mohammed Khodayer Hassan ... Aymen Mohammed Khodayer
01 Jan 2023
Secure Information Assets with Data: An Information Security Governance Framework Using Orchestrated Data Analytics from a Holistic Perspective
Huaying Chen ... Zhijun Song
-
Huaying Chen, et. al.Huaying Chen ... Zhijun Song
01 Jan 2015
Interpreting international governance standards for health IT use within general medical practice.
Patricia A H Williams ... Rachel J Mahncke
Studies in health technology and informatics | VOL. 204
Patricia A H Williams, et. al.Patricia A H Williams ... Rachel J Mahncke
04 Aug 2014
View more papers

More From: Information Systems Management

Paper Title
Journal
Date
Author
The Development of an Instrument to Assess the Areas Where Enterprise Architecture Contributes to Organizational Goals
Henk Plessius ... Johan Versendaal
Information Systems Management | VOL. ahead-of-print
Henk Plessius, et. al.Henk Plessius ... Johan Versendaal
09 Sep 2024
Overcoming IT Project Challenges: An Integrated Model of Characteristics, Leadership, and Complexity
Mike Taein Eom ... Michael A Erskine
Information Systems Management | VOL. ahead-of-print
Mike Taein Eom, et. al.Mike Taein Eom ... Michael A Erskine
17 Aug 2024
Exploring the Impact of IT Governance Mechanisms on IT Agility
Burçin Sarı ... David Schuff
Information Systems Management | VOL. ahead-of-print
Burçin Sarı, et. al.Burçin Sarı ... David Schuff
01 Aug 2024
Understanding the Effect of Environment- and Organization-Specific Factors on Sustained Crowdsourcing Contest Participation
Hanieh Javadi Khasraghi ... Yi Liu
Information Systems Management | VOL. ahead-of-print
Hanieh Javadi Khasraghi, et. al.Hanieh Javadi Khasraghi ... Yi Liu
28 Jul 2024
View more papers

Disclaimer: All third-party content on this website/platform is and will remain the property of their respective owners and is provided on "as is" basis without any warranties, express or implied. Use of third-party content does not indicate any affiliation, sponsorship with or endorsement by them. Any references to third-party content is to identify the corresponding services and shall be considered fair use under The CopyrightLaw.