The impacts of organizational culture on information security culture: a case study

被引:0
|
作者
Mincong Tang
Meng’gang Li
Tao Zhang
机构
[1] Beijing Jiaotong University,International Center for Informatics Research
[2] Beijing Jiaotong University,China Center for Industrial Security Research
[3] State Administration of Radio,undefined
[4] TV and Films,undefined
来源
Information Technology and Management | 2016年 / 17卷
关键词
Organizational culture; Information security; Security culture; Case study;
D O I
暂无
中图分类号
学科分类号
摘要
Information security cannot rely solely on technology. More attention must be drawn to the users’ behavioral perspectives regarding information security. In this study, we propose that a culture encouraging employees to comply with information policies related to collecting, preserving, disseminating and managing information will improve information security. Information security culture is believed to be influenced by an organization’s corporate culture (or organizational culture). We examine how this occurs through an in-depth case study of a large organization. We present a relationship map for organizational culture and information security practices. Six propositions are drawn from the findings of our interviews and discussions. Managerial insights, such as how to measure an organization’s information security culture and subsequently determine what perspective(s) is important for the organization to improve, are also discussed.
引用
收藏
页码:179 / 186
页数:7
相关论文
共 50 条
  • [1] The impacts of organizational culture on information security culture: a case study
    Tang, Mincong
    Li, Meng'gang
    Zhang, Tao
    [J]. INFORMATION TECHNOLOGY & MANAGEMENT, 2016, 17 (02): : 179 - 186
  • [2] Interpreting information security culture: An organizational transformation case study
    Dhillon, Gurpreet
    Syed, Romilla
    Pedron, Cristiane
    [J]. COMPUTERS & SECURITY, 2016, 56 : 63 - 69
  • [3] Organizational Transformation and Information Security Culture: A Telecom Case Study
    Dhillon, Gurpreet
    Chowdhuri, Romilla
    Pedron, Cristiane
    [J]. ICT SYSTEMS SECURITY AND PRIVACY PROTECTION, IFIP TC 11 INTERNATIONAL CONFERENCE, SEC 2014, 2014, 428 : 431 - 437
  • [4] Deriving the Relationship between Organizational Culture and Information Security Culture
    Hassan, Noor Hafizah
    Ismail, Zuraini
    [J]. VISION 2020: INNOVATION, DEVELOPMENT SUSTAINABILITY, AND ECONOMIC GROWTH, VOLS 1-3, 2013, : 926 - 932
  • [5] Cultivating and Assessing an Organizational Information Security Culture; an Empirical Study
    Al Hogail, Areej
    [J]. INTERNATIONAL JOURNAL OF SECURITY AND ITS APPLICATIONS, 2015, 9 (07): : 163 - 178
  • [6] Information Security Culture Assessment: Case Study
    Al-Mayahi, Ibrahim
    Mansoor, Sa'ad P.
    [J]. 2013 INTERNATIONAL CONFERENCE ON INFORMATION SCIENCE AND TECHNOLOGY (ICIST), 2013, : 789 - 792
  • [7] IMPACTS OF COMPREHENSIVE INFORMATION SECURITY PROGRAMS ON INFORMATION SECURITY CULTURE
    Chen, Yan
    Ramamurthy, K.
    Wen, Kuang-Wei
    [J]. JOURNAL OF COMPUTER INFORMATION SYSTEMS, 2015, 55 (03) : 11 - 19
  • [8] Impact of Organizational Culture to Information Security Triad
    Sari, Puspita Kencana
    Deniharza, Rully Satriawan
    [J]. PROCEEDINGS OF THE 3RD INTERNATIONAL SEMINAR AND CONFERENCE ON LEARNING ORGANIZATION (ISCLO-15), 2016, 45
  • [9] Exploring organizational culture for information security management
    Chang, Shuchih Ernest
    Lin, Chin-Shien
    [J]. INDUSTRIAL MANAGEMENT & DATA SYSTEMS, 2007, 107 (3-4) : 438 - 458
  • [10] The Influence of Organizational Information Security Culture on Information Security Decision Making
    Parsons, Kathryn Marie
    Young, Elise
    Butavicius, Marcus Antanas
    McCormac, Agata
    Pattinson, Malcolm Robert
    Jerram, Cate
    [J]. JOURNAL OF COGNITIVE ENGINEERING AND DECISION MAKING, 2015, 9 (02) : 117 - 129
12345