English  |  正體中文  |  简体中文  |  Items with full text/Total items : 51511/86795 (59%)
Visitors : 8281529      Online Users : 101
RC Version 7.0 © Powered By DSPACE, MIT. Enhanced by NTU Library & TKU Library IR team.
Scope Tips:
  • please add "double quotation mark" for query phrases to get precise results
  • please goto advance search for comprehansive author search
  • Adv. Search
    HomeLoginUploadHelpAboutAdminister Goto mobile version
    Please use this identifier to cite or link to this item: http://tkuir.lib.tku.edu.tw:8080/dspace/handle/987654321/68556


    Title: Mitigating Information Security Risks By Increasing User Security Awareness: A Case Study Of An Information Security Awareness System
    Authors: Chen, Charlie C;Shaw, R. S.;Yang, Samuel C.
    Contributors: 淡江大學資訊管理學系
    Keywords: Studies;Network security;Insurance industry;Systems development;Corporate culture
    Date: 2006
    Issue Date: 2011-10-23 13:16:18 (UTC+8)
    Publisher: New York: Organizational Systems Research Association
    Abstract: Organizations that lack security awareness can miss detecting many obvious security risks such as Trojans, phishing, viruses, and intellectual property theft in their daily activities. This lack of awareness can render sophisticated Internet security technologies useless and expose the organization to enormous risks. This paper adopts the systems development research methodology to investigate the security awareness needs of an insurance company that has an e-business presence. A pilot of a security awareness system was constructed for this investigative purpose. Various managers in the organization took part in the study. The pilot system was fine-tuned based on the usage experiences and feedback of participants. The findings indicate that the architecture of an information security awareness system needs to provide effective system management components that allow a system manager to customize the system interface in order to meet individual needs. In addition, the system itself needs to provide different functions such as an information portal, newsgroups, discussion forums, histories of security breach events, security awareness activities, and quality articles to facilitate the transmission of awareness concepts. The results of this study provide important lessons for organizations that plan to implement an effective information security awareness system.
    Relation: Information Technology, Learning, and Performance Journal 24(1), pp.1-14
    Appears in Collections:[資訊管理學系暨研究所] 期刊論文

    Files in This Item:

    File SizeFormat
    index.html0KbHTML134View/Open

    All items in 機構典藏 are protected by copyright, with all rights reserved.


    DSpace Software Copyright © 2002-2004  MIT &  Hewlett-Packard  /   Enhanced by   NTU Library & TKU Library IR teams. Copyright ©   - Feedback