• 主题
高级搜索  >
历史搜索 清空历史
首页> 外文学位 >Evaluating Factors of Security Policy on Information Security Effectiveness in Developing Nations: A Case of Nigeria.
【24h】

Evaluating Factors of Security Policy on Information Security Effectiveness in Developing Nations: A Case of Nigeria.

机译:关于发展中国家信息安全有效性的安全政策评估因素:以尼日利亚为例。

获取原文
获取原文并翻译 | 示例
页面导航
  • 摘要
  • 著录项
  • 相似文献
  • 相关主题

摘要

Information systems of today face more potential security infringement than ever before. The regular susceptibility of data to breaches is a function of systems users' disinclination to follow appropriate security measures. A well-secured system maintains integrity, confidentiality, and availability, while providing appropriate and consistent information, achieving adequate organizational goals, utilizing resources efficiently, and implementing effective internal control measures that provide reasonable assurance that control objectives developed by management are effective enough to thwart, detect, prevent or correct any undesired events in a timely manner. Traditionally, technology has been the focus on securing information systems; more research is needed to investigate the non-technical aspect of information security. Information security policy is a major prerequisite for effective information security program. For a security program to be effective, management must create awareness of the policy, enforce the policy and frequently maintain the policy. Without security awareness and training, information security and privacy techniques instituted by management would become ineffective. Policy awareness is a vital ingredient necessary to establish information security culture. The subject of this study is the mitigation of information security challenges using non-technical approach, focusing on awareness, enforcement, and maintenance of established information security policies. This study focused specifically on the critical elements of information security policy management and their relationships with organizations information security effectiveness. This quantitative non-experimental survey research investigated the effectiveness of information security programs in Nigerian organizations. This study utilized a structured survey instrument to gather data from a population of Nigeria's information security professionals. There were 72 respondents with complete response out of the 275 survey that were distributed in this study. Survey data were analyzed using correlation and regression analyses. The result indicates that (A) there is a high and positive relationship between security policy awareness and security program effectiveness in Nigeria. (B) there is a moderate and positive relationship between security policy enforcement and security program effectiveness in Nigeria. (C) there is a high and positive relationship between security policy maintenance and security program effectiveness in Nigeria.
机译:当今的信息系统比以往任何时候都面临着更多潜在的安全侵害。数据对漏洞的定期敏感性是系统用户不愿意遵循适当的安全措施的功能。一个安全可靠的系统可以保持完整性,机密性和可用性,同时提供适当和一致的信息,实现适当的组织目标,有效利用资源并实施有效的内部控制措施,这些措施可以合理地保证管理层制定的控制目标能够有效挫败。 ,及时发现,预防或纠正任何不良事件。传统上,技术一直是保护信息系统的重点。需要更多的研究来研究信息安全的非技术方面。信息安全策略是有效的信息安全计划的主要前提。为了使安全程序有效,管理层必须树立对策略的意识,执行策略并经常维护策略。如果没有安全意识和培训,管理层制定的信息安全和隐私技术将失效。政策意识是建立信息安全文化必不可少的要素。本研究的主题是使用非技术方法来缓解信息安全挑战,重点在于已建立的信息安全策略的意识,执行和维护。这项研究专门针对信息安全策略管理的关键要素及其与组织信息安全有效性的关系。这项定量的非实验性调查研究调查了尼日利亚组织中信息安全计划的有效性。这项研究利用结构化的调查工具从尼日利亚信息安全专业人员中收集数据。在这项研究中分发的275项调查中,有72名受访者给出了完整的答复。使用相关和回归分析对调查数据进行了分析。结果表明(A)在尼日利亚,安全政策意识与安全计划有效性之间存在高度积极的关系。 (B)在尼日利亚,安全政策的执行与安全计划的有效性之间存在适度而积极的关系。 (C)尼日利亚的安全政策维护与安全计划有效性之间存在高度积极的关系。

著录项

  • 作者

    Okolo, Nkiru Benjamin.;

  • 作者单位

    Northcentral University.;

  • 授予单位 Northcentral University.;
  • 学科 Business administration.;Information science.;Organizational behavior.
  • 学位 D.B.A.
  • 年度 2016
  • 页码 148 p.
  • 总页数 148
  • 原文格式 PDF
  • 正文语种 eng
  • 中图分类
  • 关键词

相似文献

  • 外文文献
  • 中文文献
  • 专利
获取原文

客服邮箱:kefu@zhangqiaokeyan.com

京公网安备:11010802029741号 ICP备案号:京ICP备15016152号-6 六维联合信息科技 (北京) 有限公司©版权所有

  • 客服微信

  • 服务号