Information security policies: Investigation of compliance in universities
Information security awareness (ISA) is signified as a state of consciousness and acquaintance about the potential security issues/breaches and is found to have an association with security policies compliance in organizations. Many information security incidents occur due to the negligence and unin...
| Main Authors: | Hina, S., Dominic, D.D. |
|---|---|
| Format: | Conference or Workshop Item |
| Institution: | Universiti Teknologi Petronas |
| Record Id / ISBN-0: | utp-eprints.30467 / |
| Published: |
Institute of Electrical and Electronics Engineers Inc.
2016
|
| Online Access: |
https://www.scopus.com/inward/record.uri?eid=2-s2.0-85010443395&doi=10.1109%2fICCOINS.2016.7783277&partnerID=40&md5=29d04bbf28e6cfb59a88fdfb47239373 http://eprints.utp.edu.my/30467/ |
| Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
| Summary: |
Information security awareness (ISA) is signified as a state of consciousness and acquaintance about the potential security issues/breaches and is found to have an association with security policies compliance in organizations. Many information security incidents occur due to the negligence and unintentional behavior of internal employees resulting in a serious internal threat to the safety of organizational assets. The compliance with security rules and regulations significantly depends upon the realization of threat and skills to cope with the situations. Universities in Malaysia are operating in either public or private domain; comprise of International and National students and employees. These universities accommodate ample amount of confidential personal and educational information of international and national students, faculty and staff. This paper intends to identify the provision of policies and acquaintance of universities employees on information security policies (ISP) defined by their institution. A quantitative study has been conducted in public and private universities of Malaysia to identify employees' perceptions towards their acquaintance of ISPs. Results indicate that end users of information security policies understand the importance of awareness and compliance with institutional policies. © 2016 IEEE. |
|---|