A socio‐organisational approach to information systems security risks
Authors: Koskosas, Ioannis V.; Paul, Ray J.
Source: International Journal of Risk Assessment and Management, Volume 4, Numbers 2-3, 12 September 2003 , pp. 232-244(13)
Publisher: Inderscience Publishers
Abstract:The investigation in this paper takes a socio‐organisational approach to information systems security management and proposes a framework which illustrates three important issues in the process of security goal setting. These are: trust, culture and risk communication. Three case studies show evidence that there is a chain reaction among these issues with a subsequent effect on the level of security goal setting. Ultimately, the paper identifies the determinants of group commitment within the IT departments of three financial institutions in Greece. This paper also provides a discussion regarding the research methods that were used to obtain the results.
Document Type: Research Article
Affiliations: Department of Information Systems and Computing, Brunel University, London, Uxbridge, UB8 3PH, UK. Department of Information Systems and Computing, Brunel University, London, Uxbridge, UB8 3PH, UK
Publication date: 12 September 2003