Effektivitet versus Informationssäkerhet

Carlsson, Johan; Fornell, Marcus; Otterheim, Carl

Effektivitet versus Informationssäkerhet

Mark

Carlsson, Johan ^LU ; Fornell, Marcus and Otterheim, Carl (2010) SYSK01 20101
Department of Informatics
Lund University School of Economics and Management, LUSEM

Abstract: Organizations today are increasingly dependent on IS (information systems) to perform vital tasks. Dependence of the IS, and the fact that organizations are exposed to an increasing number of threats has given information security increasing attention within the organizations. Information security has long been perceived as a technical problem. Only recently information security begun to be understood as an interaction involving technical, organizational and human factors. To create an effective information security within an organization, extensive work should be put on developing the organizations information security policy. The main purpose of this study is to investigate the impact information security policies have on the IS users... (More); Organizations today are increasingly dependent on IS (information systems) to perform vital tasks. Dependence of the IS, and the fact that organizations are exposed to an increasing number of threats has given information security increasing attention within the organizations. Information security has long been perceived as a technical problem. Only recently information security begun to be understood as an interaction involving technical, organizational and human factors. To create an effective information security within an organization, extensive work should be put on developing the organizations information security policy. The main purpose of this study is to investigate the impact information security policies have on the IS users effective use of IS. To complete the study interviews with questionnaires was used to gather empirical data. The interviews were conducted with persons who have close contact with the organization's information security policy. The survey has been carried out with users of the IS in the organizations. The audit was conducted in two large organizations in the Øresund Region. Security is a sensitive area and therefore both organizations have chosen to remain anonymous in the study. Finally a model which deals with factors that should be handled in the preparation, implementation and maintenance of effective information security is presented. What’s clearly shown in the thesis, literature review, expert interviews and questionnaires is that the safety, cost and functionality affect efficiency. (Less)

Please use this url to cite or link to this publication: http://lup.lub.lu.se/student-papers/record/1619655

author

Carlsson, Johan ^LU ; Fornell, Marcus and Otterheim, Carl

supervisor

organization

alternative title

En empirisk studie om hur en informationssäkerhetspolicy påverkar effektivt användande av informationssystem

course

SYSK01 20101

year

2010

type

M2 - Bachelor Degree

subject

Business and Economics

keywords

Internet Access, Informationssäkerhet, Tillgång till information, Effektivitet, Säkerhetspolicy, Användarkonto

language

Swedish

id

1619655

date added to LUP

2010-06-22 15:07:59

date last changed

2010-06-22 15:07:59

@misc{1619655,
  abstract     = {{Organizations today are increasingly dependent on IS (information systems) to perform vital tasks. Dependence of the IS, and the fact that organizations are exposed to an increasing number of threats has given information security increasing attention within the organizations. Information security has long been perceived as a technical problem. Only recently information security begun to be understood as an interaction involving technical, organizational and human factors. To create an effective information security within an organization, extensive work should be put on developing the organizations information security policy. The main purpose of this study is to investigate the impact information security policies have on the IS users effective use of IS. To complete the study interviews with questionnaires was used to gather empirical data. The interviews were conducted with persons who have close contact with the organization's information security policy. The survey has been carried out with users of the IS in the organizations. The audit was conducted in two large organizations in the Øresund Region. Security is a sensitive area and therefore both organizations have chosen to remain anonymous in the study. Finally a model which deals with factors that should be handled in the preparation, implementation and maintenance of effective information security is presented. What’s clearly shown in the thesis, literature review, expert interviews and questionnaires is that the safety, cost and functionality affect efficiency.}},
  author       = {{Carlsson, Johan and Fornell, Marcus and Otterheim, Carl}},
  language     = {{swe}},
  note         = {{Student Paper}},
  title        = {{Effektivitet versus Informationssäkerhet}},
  year         = {{2010}},
}

LUP Student Papers

LUND UNIVERSITY LIBRARIES

Effektivitet versus Informationssäkerhet