期刊論文
| 學年 | 94 |
|---|---|
| 學期 | 1 |
| 出版(發表)日期 | 2006-01-01 |
| 作品名稱 | An empirical study of information security policy on information security elevation in Taiwan |
| 作品名稱(其他語言) | |
| 著者 | Hong, Kwo-shing; Chi, Yen-ping; 趙榮耀; Chow, Louis R.; Tang, Jih-hsing |
| 單位 | 淡江大學資訊工程學系 |
| 出版者 | Emerald |
| 著錄名稱、卷期、頁數 | Information Management & Computer Security 14(2), pp.104-115 |
| 摘要 | Purpose – With the popularity of e‐commerce, information security is vital to most organizations. For managers, building and implementing an information security policy (ISP) has long been assumed to be an effective managerial measure to elevate an organization's security level. This paper attempts to investigate the dominant factors for an organization to build an ISP, and whether an ISP may elevate an organization's security level? Design/methodology/approach – A survey was designed and the data were collected from 165 chief information officers in Taiwan. Findings – The empirical results show that some organizational characteristics (business type and MIS/IS department size) might be good predictors for the ISP adoption and that the functions, contents, implementation and procedures of an ISP may significantly contribute to managers' perceived elevation of information security. Practical implications – Building or adopting an ISP is examined empirically to be an effective managerial measure to elevate its security level in Taiwan, and that the building of an information security should focus on the comprehensiveness of its contents, procedures and implementation items, rather than on the documents only. Originality/value – Few empirical studies have been conducted so far to examine the effectiveness of an ISP, thus the value of this paper is high. |
| 關鍵字 | Data security;Security products;Critical path analysis |
| 語言 | en |
| ISSN | 0968-5227 |
| 期刊性質 | 國內 |
| 收錄於 | |
| 產學合作 | |
| 通訊作者 | |
| 審稿制度 | 否 |
| 國別 | TWN |
| 公開徵稿 | |
| 出版型式 | ,電子版 |
| 相關連結 |
機構典藏連結 ( http://tkuir.lib.tku.edu.tw:8080/dspace/handle/987654321/45518 ) |