Evaluation of information security management system success factors: Case study of Municipal organization

Abstract

This study evaluates the development of information and information systems onhuman lives, the dependence of life and business on new technologies, and the development of issues, problems and insecurity in relevant systems andtechnologies. The role of information security may seem to be very important;hence, organizations and companies inevitably seek implementation of security. The aim of this research is to identify the priority of key success factors in implementing information security management system in Iranian Municipal Organization with the view of experts. The main research model includes seven keysuccess factors: top management support, information security policy (ISP), job responsibilities, the motivation of the employees, awareness and training programs, compliance with information security international standards, and using the services of the information security external advisors in information security management system implementation. The data were collected by questionnaires and the resultswere analyzed with SPSS software. Analysis obtained from one-sample T test suggests that top management support, information security policy (ISP) and awareness and training programs are the most important success factors in implementing information security management systems with the view of experts in the studied organization.   Key words: Information security management systems, success factors, municipal organization.