论文信息 - Determining factors influencing information security culture among ICT librarians

Determining factors influencing information security culture among ICT librarians

The purpose of this study is to examine information security culture among and to investigate the factors that contribute to the information security culture among ICT librarians. The study uses the quantitative research method to analyze the responses to open-ended questions by 56 ICT librarians in private colleges. An empirical study is presented of an information security culture assessment instrument, which is a questionnaire, thereby providing a valid and reliable tool that can be used by organizations (libraries) to assess the in-house level of the information security culture. The evidence suggests that principles significantly influence the information security culture among ICT librarians. The developed statements in the information security culture assessment instrument are not categorized to be answered by different audiences in an organization. This could be useful as not all employees would, for instance, be in a position to answer management and strategic questions. Practitioners should understand the factors influencing the information security culture in order to develop a good culture and at the same time to protect their information assets in organization.

[1] Herbert J. Mattord,et al. Principles of Information Security , 2004 .

[2] Lawrence F. Locke,et al. Reading and understanding research , 1998 .

[3] Jean-Paul A. Barthès,et al. Knowledge Management , 1994, Encyclopedia of Database Systems.

[4] A. B. Ruighaver,et al. Organisational security culture: Extending the end-user perspective , 2007, Comput. Secur..

[5] H. Tohidi,et al. Organizational culture and leadership , 2012 .

[6] Omar Bin Zakaria. Investigating information security culture challenges in a public sector organisation : a Malaysian case , 2007 .

[7] Ralph W. Thomas,et al. The Oxford Dictionary , 1907 .

[8] Jan H. P. Eloff,et al. Information Security Culture , 2002, SEC.

[9] Stephanie Teufel,et al. Tool Supported Management of Information Security Culture , 2005, SEC.

[10] Shuchih Ernest Chang,et al. Exploring organizational culture for information security management , 2007, Ind. Manag. Data Syst..

[11] Greg Laugero,et al. Managing Knowledge , 1998 .

[12] Rossouw von Solms,et al. A holistic framework for the fostering of an information security sub-culture in organizations , 2005, ISSA.

[13] T. Atchison,et al. What is corporate culture? , 2002, Trustee : the journal for hospital governing boards.

[14] Georg von Krogh,et al. Enabling Knowledge Creation: How to Unlock the Mystery of Tacit Knowledge and Release the Power of Innovation , 2000 .