Skip to main content

LUP Student Papers

LUND UNIVERSITY LIBRARIES

Informationssäkerhet inom organisationer: Attityder mot kunskap, policies och ansvarsfördelning

Pham, Mike LU (2020) SYSK16 20201
Department of Informatics
Popular Abstract
Information security is only as strong as the weakest link. Although the technical, externally oriented efforts
are of great importance, there is a predominant weakness when it comes to securing information assets; the
individual user within an organization. Employees are often seen as the weakest link due to human error.
Many of the security breaches that occur would not have been possible without intentional or unintentional
efforts by employees. In order to ensure a safe environment within an organization, all departments must
inevitably be ready to counter or neutralize potential threats. Employees in different departments must work
together to be able to do this effectively. An organization without functioning security... (More)
Information security is only as strong as the weakest link. Although the technical, externally oriented efforts
are of great importance, there is a predominant weakness when it comes to securing information assets; the
individual user within an organization. Employees are often seen as the weakest link due to human error.
Many of the security breaches that occur would not have been possible without intentional or unintentional
efforts by employees. In order to ensure a safe environment within an organization, all departments must
inevitably be ready to counter or neutralize potential threats. Employees in different departments must work
together to be able to do this effectively. An organization without functioning security will have problems
protecting their information.
The study gathers empirical data through a qualitative approach with interviews of three different companies
to investigate how they relate to information security. A major problem is that an increase in security may
have the opposite effect as the productivity within the organizations can suffer. After analyzing the
interviews and linking the results with both literature and theory, the study demonstrated that companies
should see the inclusion of information security as an iterative process and also take into account the balance
between policies, education and responsibility perspectives. The results show that information security needs
to be highly motivated by the management and there must be a continuous dialogue with the employees. (Less)
Please use this url to cite or link to this publication:
author
Pham, Mike LU
supervisor
organization
course
SYSK16 20201
year
type
M2 - Bachelor Degree
subject
keywords
Security values, IT operations, IT governance, information security, information security policy, digitalization, strategic security
report number
INF20-03
language
Swedish
id
9015011
date added to LUP
2020-06-26 14:06:29
date last changed
2020-06-26 14:06:29
@misc{9015011,
  author       = {{Pham, Mike}},
  language     = {{swe}},
  note         = {{Student Paper}},
  title        = {{Informationssäkerhet inom organisationer: Attityder mot kunskap, policies och ansvarsfördelning}},
  year         = {{2020}},
}