A STOPE model for the investigation of compliance with ISO 17799‐2005

Saleh, Mohamed S.; Alrabiah, Abdullah; Bakry, Saad Haj

doi:10.1108/09685220710817806

Cited by 14 publications

(2 citation statements)

References 9 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…These studies were primarily targeted to internet users' behavior towards the adoption of technical security measures and items have already been empirically validated. The compliance measure was developed in reference to prior literature from Ma and Pearson (2005) and Saleh et al (2007), who based their works on ISO 17799:2005 (which has been revised and renamed to ISO 27002). All constructs were measured reflectively with either positive…”

Section: Operationalization Of Constructsmentioning

confidence: 99%

Management of Technical Security Measures

Uffen

Breitner

2013

International Journal of Social and Organizational Dynamics in IT

View full text Add to dashboard Cite

Organizations are investing substantial resources in technical security measures that aim at preventively protecting their information assets. The way management – or information security executives – deals with potential security measures varies individually and depends on personality traits and cognitive factors. Based on the Theory of Planned Behavior, the authors examine the relationship between the personality traits of conscientiousness, neuroticism and openness with attitudes and intentions towards managing technical security measures. The highly relevant moderating role of compliance factors is also investigated. The hypothesized relationships are analyzed and validated using empirical data from a survey of 174 information security executives. Findings suggest that conscientiousness is important in determining the attitude towards the management of technical security measures. In addition, the findings indicate that when executives are confronted with information security standards or guidelines, the personality traits of conscientiousness and openness will have a stronger effect on attitude towards managing security measures than without moderators.

show abstract

Section: Operationalization Of Constructsmentioning

confidence: 99%

Management of Technical Security Measures

Uffen

Breitner

2013

International Journal of Social and Organizational Dynamics in IT

View full text Add to dashboard Cite

show abstract

“…A model for the representation of the compliance of an e-government with the ISO 17799-2005 standard is being developed by Bakry (2004). Recent work has identified hundreds of control measures (257) associated with evaluation of the use of security controls (133) in a single security standard which has 39 objectives (Saleh et al, 2006). The first aim of the research will be to relate these to features that a user can understand in evaluating the security of a site through the use of questionnaires to elicit the required information about a site.…”

Section: E-government Servicesmentioning

confidence: 99%

Generating Citizen Trust in E-Government Security

Tassabehji

Elliman

Mellor

2007

International Journal of Cases on Electronic Commerce

View full text Add to dashboard Cite

This is an eGISE network article. It is motivated by a concern about the extent to which trust issues inhibit a citizen's take-up of online public sector services or engagement with public decision and policy making. A citizen's decision to use online systems is influenced by their willingness to trust the environment and agency involved. This project addresses one aspect of individual "trust" decisions by providing support for citizens trying to evaluate the implications of the security infrastructure provided by the agency. Based on studies of the way both groups (citizens and agencies) express their concerns and concepts in the security area, the project will develop a software tool-a trust verification agent (TVA)-that can take an agency's security statements (or security audit) and infer how effectively this meets the security concerns of a particular citizen. This will enable citizens to state their concerns and obtain an evaluation of the agency's provision in appropriate "citizen friendly" language. Furthermore, by employing rule-based expert systems techniques, the TVA will also be able to explain its evaluation.

show abstract

Perceived information security of internal users in Indian IT services industry

Mukundan

Sai

2013

Inf Technol Manag

View full text Add to dashboard Cite

A STOPE model for the investigation of compliance with ISO 17799‐2005

Cited by 14 publications

References 9 publications

Management of Technical Security Measures

Management of Technical Security Measures

Generating Citizen Trust in E-Government Security

Perceived information security of internal users in Indian IT services industry

Contact Info

Product

Resources

About