Advanced

Effektivitet versus Informationssäkerhet

Carlsson, Johan LU ; Fornell, Marcus and Otterheim, Carl (2010) SYSK01 20101
Department of Informatics
Lund University School of Economics and Management, LUSEM
Abstract
Organizations today are increasingly dependent on IS (information systems) to perform vital tasks. Dependence of the IS, and the fact that organizations are exposed to an increasing number of threats has given information security increasing attention within the organizations. Information security has long been perceived as a technical problem. Only recently information security begun to be understood as an interaction involving technical, organizational and human factors. To create an effective information security within an organization, extensive work should be put on developing the organizations information security policy. The main purpose of this study is to investigate the impact information security policies have on the IS users... (More)
Organizations today are increasingly dependent on IS (information systems) to perform vital tasks. Dependence of the IS, and the fact that organizations are exposed to an increasing number of threats has given information security increasing attention within the organizations. Information security has long been perceived as a technical problem. Only recently information security begun to be understood as an interaction involving technical, organizational and human factors. To create an effective information security within an organization, extensive work should be put on developing the organizations information security policy. The main purpose of this study is to investigate the impact information security policies have on the IS users effective use of IS. To complete the study interviews with questionnaires was used to gather empirical data. The interviews were conducted with persons who have close contact with the organization's information security policy. The survey has been carried out with users of the IS in the organizations. The audit was conducted in two large organizations in the Øresund Region. Security is a sensitive area and therefore both organizations have chosen to remain anonymous in the study. Finally a model which deals with factors that should be handled in the preparation, implementation and maintenance of effective information security is presented. What’s clearly shown in the thesis, literature review, expert interviews and questionnaires is that the safety, cost and functionality affect efficiency. (Less)
Please use this url to cite or link to this publication:
author
Carlsson, Johan LU ; Fornell, Marcus and Otterheim, Carl
supervisor
organization
alternative title
En empirisk studie om hur en informationssäkerhetspolicy påverkar effektivt användande av informationssystem
course
SYSK01 20101
year
type
M2 - Bachelor Degree
subject
keywords
Internet Access, Informationssäkerhet, Tillgång till information, Effektivitet, Säkerhetspolicy, Användarkonto
language
Swedish
id
1619655
date added to LUP
2010-06-22 15:07:59
date last changed
2010-06-22 15:07:59
@misc{1619655,
  abstract     = {Organizations today are increasingly dependent on IS (information systems) to perform vital tasks. Dependence of the IS, and the fact that organizations are exposed to an increasing number of threats has given information security increasing attention within the organizations. Information security has long been perceived as a technical problem. Only recently information security begun to be understood as an interaction involving technical, organizational and human factors. To create an effective information security within an organization, extensive work should be put on developing the organizations information security policy. The main purpose of this study is to investigate the impact information security policies have on the IS users effective use of IS. To complete the study interviews with questionnaires was used to gather empirical data. The interviews were conducted with persons who have close contact with the organization's information security policy. The survey has been carried out with users of the IS in the organizations. The audit was conducted in two large organizations in the Øresund Region. Security is a sensitive area and therefore both organizations have chosen to remain anonymous in the study. Finally a model which deals with factors that should be handled in the preparation, implementation and maintenance of effective information security is presented. What’s clearly shown in the thesis, literature review, expert interviews and questionnaires is that the safety, cost and functionality affect efficiency.},
  author       = {Carlsson, Johan and Fornell, Marcus and Otterheim, Carl},
  keyword      = {Internet Access,Informationssäkerhet,Tillgång till information,Effektivitet,Säkerhetspolicy,Användarkonto},
  language     = {swe},
  note         = {Student Paper},
  title        = {Effektivitet versus Informationssäkerhet},
  year         = {2010},
}