National information security policy and its implementation: A case study in Taiwan

Ku, Cheng-Yuan; Chang, Yi-Wen; Yen, David C.

doi:10.1016/j.telpol.2009.03.002

Cited by 35 publications

(37 citation statements)

References 27 publications

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…The sample population was small and medium sized businesses in a cross-section of industries located in south central United States. Previous ISS research demonstrated regulatory demands influence senior management commitment to ISS [4], [11], [40], and organizational commitment to ISS tends to align by industry [10]. Therefore, a cross-section of industries is needed to accurately assess the impact isomorphic mechanisms have on senior managers.…”

Section: Methodsmentioning

confidence: 99%

Information System Security Commitment: A Pilot Study of External Influences on Senior Management

Tejay

Barton

2013

2013 46th Hawaii International Conference on System Sciences

View full text Add to dashboard Cite

This study investigated how external influences motivate senior management to commit to information system security (ISS) by examining the mediating role of senior management between external influences and organizational change. Neo-institutional theory was used to examine normative, mimetic, and coercive mechanisms that affect ISS assimilation in organizations. Findings show senior management beliefs about ISS and participation in ISS mediate effects of external influences on ISS assimilation. The findings from this pilot study give merit to a more comprehensive study, and provide a better understanding of how to motivate senior management to lead ISS in their organizations.

show abstract

Section: Methodsmentioning

confidence: 99%

Information System Security Commitment: A Pilot Study of External Influences on Senior Management

Tejay

Barton

2013

2013 46th Hawaii International Conference on System Sciences

View full text Add to dashboard Cite

show abstract

“…Unfortunately, these strategies do not provide a clear implementation or performance controls to holistically monitor the implementation. The reference [55] proposed a model to align the Taiwanese national policy with standards of the ISO/IEC 27001 and the BS 7799. Recently provide a holistic model cybersecurity model of multitier missions comprised of multiple craft with heterogeneous movement and sensing capabilities [56].…”

Section: National Frameworkmentioning

confidence: 99%

A Classification Scheme for Cybersecurity Models

Atoum¹,

Otoom²

2017

IJSIA

View full text Add to dashboard Cite

show abstract

“…Yet, employee awareness is recognized as one of the greatest challenges in implementing security (Knapp, Morris, Marshall, & Byrd, 2009). Ku, Chang, and Yen (2009) highlighted that employee awareness of information security is one of the key factors in the successful self-implementation of information security systems. More recently, Bulgurcu et al (2010) found that information security awareness can directly and indirectly influence employee beliefs about their compliance with information security policy.…”

Section: Awarenessmentioning

confidence: 99%

“…In addition, users' information security awareness has been recognized as an important factor in security effectiveness (Cavusoglu et al, 2009;Ku et al, 2009;Rezgui & Marks, 2008;Siponen, 2000;Straub & Welke, 1998). For example, users should be aware of disciplinary actions, risks, and potential losses resulting from noncompliance with organizational information security policies (Barman, 2002;Furnell et al, 1996).…”

Section: Individual Factorsmentioning

confidence: 99%

The influence of information security on the adoption of web-based integrated information systems: an e-government study in Peru

Joo

Hovav

2015

Information Technology for Development

View full text Add to dashboard Cite

This study analyzes the determinants of information security that influence the adoption of Web-based integrated information systems (IIS) by government agencies in Peru. The study introduces Web-based information systems designed to formulate strategic plans for the Peruvian government. A theoretical model is proposed to test the impact of organizational factors such as deterrent efforts, severity efforts, and preventive efforts and individual factors such as perceived information security threats and security awareness on intentions to use Web-based IIS. The empirical results indicate that deterrent efforts and deterrent severity have no significant influence on use intentions of IIS, whereas preventive efforts play an important role in such intentions. Information security awareness and perceived information security threats as individual factors have a significant effect on intentions to use the system. This suggests that organizations should implement preventive efforts by introducing various information security solutions, and improve information security awareness while reducing perceived information security threats.

show abstract

National information security policy and its implementation: A case study in Taiwan

Cited by 35 publications

References 27 publications

Information System Security Commitment: A Pilot Study of External Influences on Senior Management

Information System Security Commitment: A Pilot Study of External Influences on Senior Management

A Classification Scheme for Cybersecurity Models

The influence of information security on the adoption of web-based integrated information systems: an e-government study in Peru

Contact Info

Product

Resources

About