Definition of Information Systems Security Policies

被引:1
|
作者
Lopes, Isabel Maria [1 ,2 ,3 ]
Pereira, Joao Paulo [2 ,3 ]
Oliveira, Pedro [3 ]
机构
[1] Univ Minho, Ctr ALGORITMI, Braga, Portugal
[2] Inst Politecn Braganca, UNIAG Appl Management Res Unit, Braganca, Portugal
[3] Polytech Inst Braganca, Sch Technol & Management, Braganca, Portugal
来源
RECENT ADVANCES IN INFORMATION SYSTEMS AND TECHNOLOGIES, VOL 3 | 2017年 / 571卷
关键词
Information security; Definition of security policies; Information systems security policies;
D O I
10.1007/978-3-319-56541-5_23
中图分类号
TP18 [人工智能理论];
学科分类号
081104 ; 0812 ; 0835 ; 1405 ;
摘要
Information systems security (ISS) is crucial in all and each one of the services provided by organizations. Among security measures, policies assume a central role in literature. A lot has been said about this issue over the last years, however, the analysis of some studies conducted by different authors show that this ISS measure has not yet been institutionalized in most companies. By approaching aspects intrinsically related to ISS policies, this paper aims to contribute suggestions of some actions which might be taken to formulate and implement an ISS policy. Methodologically, the study involved interviewing the officials in charge of information systems in 21 Small and Medium Sized Enterprises (SMEs) in Portugal. The results are discussed in the light of literature and future works are identified with the aim of enabling the implementation of ISS.
引用
收藏
页码:225 / 234
页数:10
相关论文
共 50 条
  • [1] Applying Action Research in the Adoption of Information Systems Security Policies
    Lopes, Isabel
    de Sa-Soares, Filipe
    PROCEEDINGS OF THE 12TH EUROPEAN CONFERENCE ON RESEARCH METHODOLOGY FOR BUSINESS AND MANAGEMENT STUDIES, 2013, : 219 - 226
  • [2] Evolution of the Institutionalization of Information Systems Security Policies in Portuguese Public Administration
    Lopes, Isabel Maria
    Oliveira, Pedro
    2016 11TH IBERIAN CONFERENCE ON INFORMATION SYSTEMS AND TECHNOLOGIES (CISTI), 2016,
  • [3] Compliance with Information Security Policies: A Meta-Analysis of the role of the definition of the term "Security Policies" Emergent Research Forum (ERF)
    Sikolia, David
    25TH AMERICAS CONFERENCE ON INFORMATION SYSTEMS (AMCIS 2019), 2019,
  • [4] Implementation of Information Systems Security Policies: A Survey in Small and Medium Sized Enterprises
    Lopes, Isabel
    Oliveira, Pedro
    NEW CONTRIBUTIONS IN INFORMATION SYSTEMS AND TECHNOLOGIES, VOL 1, PT 1, 2015, 353 : 459 - 468
  • [5] Public Security Policies in the Information Society
    Alamillo, Ignacio
    IDP-INTERNET LAW AND POLITICS, 2009, (09):
  • [6] Motivational aspects of information security policies
    Marcinkowski, SJ
    Stanton, JM
    2003 IEEE INTERNATIONAL CONFERENCE ON SYSTEMS, MAN AND CYBERNETICS, VOLS 1-5, CONFERENCE PROCEEDINGS, 2003, : 2527 - 2532
  • [7] Employees' adherence to information security policies: An exploratory field study
    Siponen, Mikko
    Mahmood, M. Adam
    Pahnila, Seppo
    INFORMATION & MANAGEMENT, 2014, 51 (02) : 217 - 224
  • [8] Information security governance - A re-definition
    Rastogi, R
    von Solms, R
    Security Management, Integrity, and Internal Control in Information Systems, 2005, 193 : 223 - 236
  • [9] Determinants of early conformance with information security policies
    Belanger, France
    Collignon, Stephane
    Enget, Kathryn
    Negangard, Eric
    INFORMATION & MANAGEMENT, 2017, 54 (07) : 887 - 901
  • [10] Architecture of Information Security Policies: A Content Analysis
    Lopes, Isabel
    Oliveira, Pedro
    NEW ADVANCES IN INFORMATION SYSTEMS AND TECHNOLOGIES, VOL 1, 2016, 444 : 493 - 502
12345