Informationssäkerhet inom organisationer: Attityder mot kunskap, policies och ansvarsfördelning
(2020) SYSK16 20201Department of Informatics
- Popular Abstract
- Information security is only as strong as the weakest link. Although the technical, externally oriented efforts
are of great importance, there is a predominant weakness when it comes to securing information assets; the
individual user within an organization. Employees are often seen as the weakest link due to human error.
Many of the security breaches that occur would not have been possible without intentional or unintentional
efforts by employees. In order to ensure a safe environment within an organization, all departments must
inevitably be ready to counter or neutralize potential threats. Employees in different departments must work
together to be able to do this effectively. An organization without functioning security... (More) - Information security is only as strong as the weakest link. Although the technical, externally oriented efforts
are of great importance, there is a predominant weakness when it comes to securing information assets; the
individual user within an organization. Employees are often seen as the weakest link due to human error.
Many of the security breaches that occur would not have been possible without intentional or unintentional
efforts by employees. In order to ensure a safe environment within an organization, all departments must
inevitably be ready to counter or neutralize potential threats. Employees in different departments must work
together to be able to do this effectively. An organization without functioning security will have problems
protecting their information.
The study gathers empirical data through a qualitative approach with interviews of three different companies
to investigate how they relate to information security. A major problem is that an increase in security may
have the opposite effect as the productivity within the organizations can suffer. After analyzing the
interviews and linking the results with both literature and theory, the study demonstrated that companies
should see the inclusion of information security as an iterative process and also take into account the balance
between policies, education and responsibility perspectives. The results show that information security needs
to be highly motivated by the management and there must be a continuous dialogue with the employees. (Less)
Please use this url to cite or link to this publication:
http://lup.lub.lu.se/student-papers/record/9015011
- author
- Pham, Mike LU
- supervisor
- organization
- course
- SYSK16 20201
- year
- 2020
- type
- M2 - Bachelor Degree
- subject
- keywords
- Security values, IT operations, IT governance, information security, information security policy, digitalization, strategic security
- report number
- INF20-03
- language
- Swedish
- id
- 9015011
- date added to LUP
- 2020-06-26 14:06:29
- date last changed
- 2020-06-26 14:06:29
@misc{9015011, author = {{Pham, Mike}}, language = {{swe}}, note = {{Student Paper}}, title = {{Informationssäkerhet inom organisationer: Attityder mot kunskap, policies och ansvarsfördelning}}, year = {{2020}}, }