期刊論文

學年 94
學期 1
出版(發表)日期 2006-01-01
作品名稱 An empirical study of information security policy on information security elevation in Taiwan
作品名稱(其他語言)
著者 Hong, Kwo-shing; Chi, Yen-ping; 趙榮耀; Chow, Louis R.; Tang, Jih-hsing
單位 淡江大學資訊工程學系
出版者 Emerald
著錄名稱、卷期、頁數 Information Management & Computer Security 14(2), pp.104-115
摘要 Purpose – With the popularity of e‐commerce, information security is vital to most organizations. For managers, building and implementing an information security policy (ISP) has long been assumed to be an effective managerial measure to elevate an organization's security level. This paper attempts to investigate the dominant factors for an organization to build an ISP, and whether an ISP may elevate an organization's security level? Design/methodology/approach – A survey was designed and the data were collected from 165 chief information officers in Taiwan. Findings – The empirical results show that some organizational characteristics (business type and MIS/IS department size) might be good predictors for the ISP adoption and that the functions, contents, implementation and procedures of an ISP may significantly contribute to managers' perceived elevation of information security. Practical implications – Building or adopting an ISP is examined empirically to be an effective managerial measure to elevate its security level in Taiwan, and that the building of an information security should focus on the comprehensiveness of its contents, procedures and implementation items, rather than on the documents only. Originality/value – Few empirical studies have been conducted so far to examine the effectiveness of an ISP, thus the value of this paper is high.
關鍵字 Data security;Security products;Critical path analysis
語言 en
ISSN 0968-5227
期刊性質 國內
收錄於
產學合作
通訊作者
審稿制度
國別 TWN
公開徵稿
出版型式 ,電子版
相關連結

機構典藏連結 ( http://tkuir.lib.tku.edu.tw:8080/dspace/handle/987654321/45518 )

機構典藏連結