The influence of national culture on information security culture

The strength of information security within organisations and countries is very much determined by the information security culture of people. The human factor of information security plays a significant role in securing information assets. National culture has an impact on organisational culture and therefore is also a consideration for enhancing information security culture. This research looks at the value of information security culture in organisations, frameworks for information security culture and the impact of national culture on organisational culture.

[1]  Marcus A. Butavicius,et al.  Human Factors and Information Security: Individual, Culture and Security Environment , 2010 .

[2]  Dušan Mojić The influence of national culture on organizational subcultures and leadership styles in Serbian enterprises: An empirical analysis , 2003 .

[3]  Sebastiaan H. von Solms,et al.  Information Security Management: An Approach to Combine Process Certification And Product Evaluation , 2000, Comput. Secur..

[4]  Joanne D. Martin,et al.  Organizational culture and counterculture: An uneasy symbiosis. , 1983 .

[5]  George M Gray,et al.  Dealing with the dangers of fear: the role of risk communication. , 2002, Health affairs.

[6]  Rossouw von Solms,et al.  Information security culture: A management perspective , 2010, Comput. Secur..

[7]  D. Nabudere in the Age of Globalization , 2001 .

[8]  P. Dorfman,et al.  Leadership and Organizations: The GLOBE Study of 62 Societies , 2004 .

[9]  Angus Mcilwraith Information Security and Employee Behaviour: How to Reduce Risk Through Employee Education, Training and Awareness , 2006 .

[10]  Mariki M. Eloff,et al.  Social Aspects of Information Security , 2008, ISSA.

[11]  Rossouw von Solms,et al.  Cyber Security Education in Developing Countries: A South African Perspective , 2012, AFRICOMM.

[12]  B. Fischhoff,et al.  Judged frequency of lethal events , 1978 .

[13]  J. Heales,et al.  The Influence of National Culture on the Level and Outcome of IS Development Decisions , 2004 .

[14]  Z. Irani,et al.  The relationship between national culture and organisational culture: the case of Iranian private sector organisations , 2013 .

[15]  Baruch Fischhoff 5 Assessing and Communicating the Risks of Terrorism , 2002 .

[16]  Giana M. Eckhardt Culture's Consequences: Comparing Values, Behaviors, Institutions and Organisations Across Nations , 2002 .

[17]  G. Oliver Organisational Culture for Information Managers , 2011 .

[18]  J. Wylder Strategic Information Security , 2003 .

[19]  Mikko T. Siponen,et al.  Five dimensions of information security awareness , 2001, CSOC.

[20]  V. Strecher,et al.  Changing inaccurate perceptions of health risk: results from a randomized trial. , 1995, Health psychology : official journal of the Division of Health Psychology, American Psychological Association.

[21]  Steven Furnell,et al.  Risk and restitution: Assessing how users establish online trust , 2006, Comput. Secur..

[22]  E. Schein The Corporate Culture Survival Guide , 1999 .

[23]  Paul L. Koopman,et al.  The influence of national culture on organizational culture: A comparative study between 10 countries , 1994 .

[24]  Desmond Graves,et al.  Corporate Culture: Diagnosis and Change : Auditing and Changing the Culture of Organizations , 1986 .

[25]  R. Meertens,et al.  Security or opportunity: the influence of risk‐taking tendency on risk information preference , 2005 .

[26]  Tuija Kuusisto,et al.  Information Security Culture as a Social System: Some Notes of Information Availability and Sharing , 2009 .

[27]  Sebastiaan H. von Solms,et al.  Information Security - The Third Wave? , 2000, Comput. Secur..

[28]  V. Strecher,et al.  Changing inaccurate perceptions of health risk: results from a randomized trial , 1995 .

[29]  G. Hofstede Culture′s Consequences: Comparing Values, Behaviors, Institutions and Organizations Across Nations , 2001 .

[30]  A. B. Ruighaver,et al.  Organisational security culture: Extending the end-user perspective , 2007, Comput. Secur..

[31]  John J. Mauriel,et al.  A Framework for Linking Culture and Improvement Initiatives in Organizations , 2000 .

[32]  G. McLean,et al.  The Impact of National Culture on Informal Learning in the Workplace , 2014 .

[33]  B. Burrows Culture and organisations. Software of the mind , 1992 .

[34]  C. Hampden-Turner Corporate Culture: From Vicious to Virtuous Circles , 1990 .

[35]  William L. Simon,et al.  The Art of Deception: Controlling the Human Element of Security , 2001 .