期刊論文

學年 95
學期 1
出版(發表)日期 2006-12-01
作品名稱 Mitigating Information Security Risks By Increasing User Security Awareness: A Case Study Of An Information Security Awareness System
作品名稱(其他語言)
著者 Chen, Charlie C; Shaw, R. S.; Yang, Samuel C.
單位 淡江大學資訊管理學系
出版者 New York: Organizational Systems Research Association
著錄名稱、卷期、頁數 Information Technology, Learning, and Performance Journal 24(1), pp.1-14
摘要 Organizations that lack security awareness can miss detecting many obvious security risks such as Trojans, phishing, viruses, and intellectual property theft in their daily activities. This lack of awareness can render sophisticated Internet security technologies useless and expose the organization to enormous risks. This paper adopts the systems development research methodology to investigate the security awareness needs of an insurance company that has an e-business presence. A pilot of a security awareness system was constructed for this investigative purpose. Various managers in the organization took part in the study. The pilot system was fine-tuned based on the usage experiences and feedback of participants. The findings indicate that the architecture of an information security awareness system needs to provide effective system management components that allow a system manager to customize the system interface in order to meet individual needs. In addition, the system itself needs to provide different functions such as an information portal, newsgroups, discussion forums, histories of security breach events, security awareness activities, and quality articles to facilitate the transmission of awareness concepts. The results of this study provide important lessons for organizations that plan to implement an effective information security awareness system.
關鍵字 Studies;Network security;Insurance industry;Systems development;Corporate culture
語言 en
ISSN 1535-1556
期刊性質 國外
收錄於
產學合作
通訊作者
審稿制度
國別 USA
公開徵稿
出版型式 ,紙本
相關連結

機構典藏連結 ( http://tkuir.lib.tku.edu.tw:8080/dspace/handle/987654321/68556 )

機構典藏連結