Information security culture - The socio-cultural dimension in information security management

被引:0
|
作者
Schlienger, T [1 ]
Teufel, S [1 ]
机构
[1] Univ Fribourg, Int Inst Management Telecommun, CH-1700 Fribourg, Switzerland
来源
SECURITY IN THE INFORMATION SOCIETY: VISIONS AND PERSPECTIVES | 2002年 / 86卷
关键词
security culture; awareness; human dimension; information security management;
D O I
暂无
中图分类号
TP [自动化技术、计算机技术];
学科分类号
0812 ;
摘要
The information security management mostly disregards the human dimension. The main focus is on technical and procedural measures. The user is-seen as a security enemy, not as a security asset. In our paper we identify some problems, that emerge from this sight and we propose a paradigm shift from a technical approach to a socio-cultural one, from "the user is my enemy" to "the user is my security asset" approach. We explain the concept of corporate culture and show exemplary on the example of the security culture, how the cultural theory can help to increase the overall security of an organization.
引用
收藏
页码:191 / 201
页数:11
相关论文
共 50 条
  • [1] Information security culture: A management perspective
    Van Niekerk, J. F.
    Von Solms, R.
    [J]. COMPUTERS & SECURITY, 2010, 29 (04) : 476 - 486
  • [2] An Information Security Management for Socio-Technical Analysis of System Security
    Huynen, Jean-Louis
    Lenzini, Gabriele
    [J]. INFORMATION SYSTEMS SECURITY AND PRIVACY, 2018, 867 : 222 - 251
  • [3] Socio-cultural component of Ukrainian economic security
    Pryimak, Vasyl
    Ledzianowski, Jozef
    Hrytsaiko, Andrii
    [J]. JOURNAL OF DECISION SYSTEMS, 2020, 29 : 473 - 481
  • [4] ENERGY, INFORMATION, AND SOCIO-CULTURAL ADVANCEMENT
    NOLAN, PD
    [J]. AMERICAN JOURNAL OF SOCIOLOGY, 1982, 87 (04) : 942 - 946
  • [5] Information security culture
    Martins, A
    Eloff, J
    [J]. SECURITY IN THE INFORMATION SOCIETY: VISIONS AND PERSPECTIVES, 2002, 86 : 203 - 214
  • [6] Exploring organizational culture for information security management
    Chang, Shuchih Ernest
    Lin, Chin-Shien
    [J]. INDUSTRIAL MANAGEMENT & DATA SYSTEMS, 2007, 107 (3-4) : 438 - 458
  • [7] IMPACT OF INFORMATION TECHNOLOGY AND COMMUNICATION: digital culture and socio-cultural changes
    Vincentini Jorente, Maria Jose
    [J]. INFORMACAO & SOCIEDADE-ESTUDOS, 2012, 22 (01) : 13 - 25
  • [8] IMPACTS OF COMPREHENSIVE INFORMATION SECURITY PROGRAMS ON INFORMATION SECURITY CULTURE
    Chen, Yan
    Ramamurthy, K.
    Wen, Kuang-Wei
    [J]. JOURNAL OF COMPUTER INFORMATION SYSTEMS, 2015, 55 (03) : 11 - 19
  • [9] Information Security Culture: Towards an Instrument for Assessing Security Management Practices
    Lim, Loo S.
    Maynard, Sean B.
    Ahmad, Atif
    Chang, Shanton
    [J]. INTERNATIONAL JOURNAL OF CYBER WARFARE AND TERRORISM, 2015, 5 (02) : 31 - 52
  • [10] Analyzing information security culture: Increased trust by an appropriate information security culture
    Schlienger, T
    Teufel, S
    [J]. 14TH INTERNATIONAL WORKSHOP ON DATABASE AND EXPERT SYSTEMS APPLICATIONS, PROCEEDINGS, 2003, : 405 - 409
12345