Aligning the information security policy with the strategic information systems plan

“…Agency requires formal controls (e.g., regulations) and informal controls (e.g., informal shared norms and beliefs) to interact with resources and materials (e.g., EDC machines). Only in this way does the interaction become institutionalized and satisfy the organization's cultures and strategy (Doherty and Fulford, 2006). The established and internalized realm of action strengthens the institutional realm and helps maintain the social order.…”

“…Doherty et al (2009) state that the importance of formulating and applying formal security policy can prevent security breaches from occurring and hence safeguard organizational information. Doherty and Fulford (2006) have also argued that by carefully and explicitly aligning information security policy and strategic information systems plan enhances the security of information systems. They find that there is a strong impact of a carefully designed information security policy on the planning of strategic information systems.…”

“…The IT security policy and procedures are therefore an exclusive privilege of the IT security department. Not only are the policies aligned with the bank's organizational culture and strategy (Doherty and Fulford, 2006), but the policies are also initiated according to the central bank's information security guidelines. As a practice to adhere to the central bank's policies and regulations, Centro Metropolitan Bank, as a commercial bank, delivers regular (e.g., weekly, monthly, or annual) reports to the central bank and welcomes audit visits by a team dispatched by the central bank.…”

Shaping of Security Policy in an Indonesian Bank: Interpreting Institutionalization and Structuration

“…Agency requires formal controls (e.g., regulations) and informal controls (e.g., informal shared norms and beliefs) to interact with resources and materials (e.g., EDC machines). Only in this way does the interaction become institutionalized and satisfy the organization's cultures and strategy (Doherty and Fulford, 2006). The established and internalized realm of action strengthens the institutional realm and helps maintain the social order.…”

“…Doherty et al (2009) state that the importance of formulating and applying formal security policy can prevent security breaches from occurring and hence safeguard organizational information. Doherty and Fulford (2006) have also argued that by carefully and explicitly aligning information security policy and strategic information systems plan enhances the security of information systems. They find that there is a strong impact of a carefully designed information security policy on the planning of strategic information systems.…”

“…The IT security policy and procedures are therefore an exclusive privilege of the IT security department. Not only are the policies aligned with the bank's organizational culture and strategy (Doherty and Fulford, 2006), but the policies are also initiated according to the central bank's information security guidelines. As a practice to adhere to the central bank's policies and regulations, Centro Metropolitan Bank, as a commercial bank, delivers regular (e.g., weekly, monthly, or annual) reports to the central bank and welcomes audit visits by a team dispatched by the central bank.…”

Shaping of Security Policy in an Indonesian Bank: Interpreting Institutionalization and Structuration

“…It is impossible for any organization to ensure Privacy of data without having a robust system around information security. Yet there are difference between information security and Privacy as the concept of Privacy grows above confidentiality and relates to Choice, Notice and Transparency as well [34].…”

Information Systems Threats and Vulnerabilities

“…This links ISS with law enforcement and in particular with digital forensics (Sitaraman &Venkatesan, 2006). There are numerous challenges in maintaining security in higher learning institutions (Doherty & Fulford, 2006). First and foremost information security challenge in higher education is limited budgets especially in today"s economy.…”

Challenges Facing Information Systems Security Management in Higher Learning Institutions: A Case Study of the Catholic University of Eastern Africa - Kenya