Implementation of Information Systems Security Policies: A Survey in Small and Medium Sized Enterprises

被引:4
|
作者
Lopes, Isabel [1 ]
Oliveira, Pedro [1 ]
机构
[1] Polytech Inst Braganca, Sch Technol & Management, Braganca, Portugal
来源
NEW CONTRIBUTIONS IN INFORMATION SYSTEMS AND TECHNOLOGIES, VOL 1, PT 1 | 2015年 / 353卷
关键词
Information Security; Information Systems Security Policies; Small and Medium Sized Enterprises;
D O I
10.1007/978-3-319-16486-1_45
中图分类号
TP18 [人工智能理论];
学科分类号
081104 ; 0812 ; 0835 ; 1405 ;
摘要
Information has become organizations' most valuable asset, thus being a potential target to threats intending to explore their vulnerabilities and cause considerable damage. Therefore, there is a need to implement policies regarding information systems security (ISS) in an attempt to reduce the chances of fraud or information loss. Thus, it is important to find the critical success factors to the implementation of a security policy as well as to assess the level of importance of each one of them. This paper contributes to the identification of such factors by presenting the results of a survey regarding information systems security policies in small and medium sized enterprises (SME). We discuss the results in the light of a literature framework and identify future works aiming to enhance information security in organizations.
引用
收藏
页码:459 / 468
页数:10
相关论文
共 50 条
  • [1] Understanding Information Security Culture: A Survey in Small and Medium Sized Enterprises
    Lopes, Isabel
    Oliveira, Pedro
    [J]. NEW PERSPECTIVES IN INFORMATION SYSTEMS AND TECHNOLOGIES, VOL 1, 2014, 275 : 277 - 286
  • [2] Policies for Small and Medium Sized Enterprises
    Ion, Ceptureanu Sebastian
    [J]. VISION 2020: INNOVATION MANAGEMENT, DEVELOPMENT SUSTAINABILITY, AND COMPETITIVE ECONOMIC GROWTH, 2016, VOLS I - VII, 2016, : 3447 - 3457
  • [3] Performance measurement systems implementation in small and medium-sized enterprises
    Magali, Matilla
    Ricardo, Chalmeta
    [J]. ICEIS 2007: PROCEEDINGS OF THE NINTH INTERNATIONAL CONFERENCE ON ENTERPRISE INFORMATION SYSTEMS: INFORMATION SYSTEMS ANALYSIS AND SPECIFICATION, 2007, : 525 - 528
  • [4] Information Security Culture Assessment of Small and Medium-Sized Enterprises in Tanzania
    Ruhwanya, Zainab
    Ophoff, Jacques
    [J]. INFORMATION AND COMMUNICATION TECHNOLOGIES FOR DEVELOPMENT: STRENGTHENING SOUTHERN-DRIVEN COOPERATION AS A CATALYST FOR ICT4D, PT I, 2019, 551 : 776 - 788
  • [5] Performance measurements in the implementation of information systems in small and medium-sized enterprises: a framework and empirical analysis
    Sharma, Milind Kumar
    Bhagwat, Rajat
    [J]. MEASURING BUSINESS EXCELLENCE, 2006, 10 (04) : 8 - 21
  • [6] Small and Medium-sized Decoration Enterprises' Information Construction Strategy & Implementation
    Cai Hong
    Guo Xia
    Zhang Yin
    [J]. ENTERPRISE GROWS IN SUSTAINING EFFICIENCY AND EFFECTIVENESS, CONFERENCE PROCEEDINGS, 2009, : 172 - 178
  • [7] PREREQUISITES FOR THE IMPLEMENTATION OF INFORMATION TECHNOLOGIES IN TOURISM SMALL AND MEDIUM-SIZED ENTERPRISES
    Krsak, Branislav
    Tobisova, Alica
    [J]. 12TH INTERNATIONAL MULTIDISCIPLINARY SCIENTIFIC GEOCONFERENCE, SGEM 2012, VOL. III, 2012, : 205 - 212
  • [8] Information systems strategy for small and medium sized enterprises: an organisational perspective
    Levy, M
    Powell, P
    [J]. JOURNAL OF STRATEGIC INFORMATION SYSTEMS, 1999, 9 (01): : 63 - 84
  • [9] Organizational information systems competences in small and medium-sized enterprises
    Cragg, Paul
    Caldeira, Mario
    Ward, John
    [J]. INFORMATION & MANAGEMENT, 2011, 48 (08) : 353 - 363
  • [10] Creativity and Intelligence in Small and Medium Sized Enterprises: The Role of Information Systems
    Dhillon, Gurpreet
    Stahl, Bernd Carsten
    Baskerville, Richard
    [J]. INFORMATION SYSTEMS - CREATIVITY AND INNOVATION IN SMALL AND MEDIUM-SIZED ENTERPRISES, 2009, 301 : 1 - +
12345