An integrated view of human, organizational, and technological challenges of IT security management

Werlinger, Rodrigo; Hawkey, Kirstie; Beznosov, Konstantin

doi:10.1108/09685220910944722

Cited by 110 publications

(102 citation statements)

References 26 publications

(46 reference statements)

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…Based on the results of the intial interviews, the following conceptual framework is designed as the basis of the open-ended questionnaire to collect qualitative data from 40 respendents in next step . The autors develop the conceptual framework based on the model of Human,Organization and Technology that previously used for several studies about IT security voulnerability [23] The 40 respondents of this study are selected from IT, operation and production departments of the Iranian manufacturing industries.…”

Section: Methodsmentioning

confidence: 99%

Failure Factors of ERP Projects in an Iranian Context

Pouransafar¹

2013

IOSR-JBM

View full text Add to dashboard Cite

Section: Methodsmentioning

confidence: 99%

Failure Factors of ERP Projects in an Iranian Context

Pouransafar¹

2013

IOSR-JBM

View full text Add to dashboard Cite

“…While technology is important, organizational and human factors also form a crucial role in achieving information security [1]. Understanding of how different human, organizational, and technological elements interplay could explain how different factors lead to sources of security breaches and vulnerabilities within organizations [15], [30]. Since each dimension has human involvement, even if the organizational dimension is added, protection may not be sufficient as both the organizational and technology dimensions depend on the H dimension.…”

Section: Anti-phishing Framework: Phishing For a Solutionmentioning

confidence: 99%

“…It is the responsibility of all employees to protect information thus defending the reputation and financial wellbeing of the business [2]. Effective interactions and communications are required to reach a mutual understanding about security risks among different stakeholders [30]. An information security culture needs to be adopted to ensure that information security becomes a natural aspect in the daily practice of every employee.…”

Section: Information Security Management and Culturementioning

confidence: 99%

An Enterprise Anti-phishing Framework

Frauenstein¹,

Solms²

2013

Information Assurance and Security Education and Training

View full text Add to dashboard Cite

Abstract. The objective of this paper is to report back on an organizational framework, which consisted of human, organization and technology (HOT) dimensions in holistically addressing aspects associated with phishing. Most anti-phishing literature studied either focused on technical controls or education in isolation however; education is core to all aspects in the above-mentioned framework. It is evident, from literature, that little work has been conducted on anti-phishing preventative measures in the context of organizations but rather from a personal user-level. In the framework, the emphasis is placed on the human factors in addressing phishing attacks.

show abstract

“…Information security is an interdisciplinary field encompassing aspects of organization, management, and technology (Werlinger, Hawkey, & Beznosov, 2009). Most efforts in this field have been traditionally dedicated to technical or managerial issues.…”

Section: Information Security Policy (Isp)mentioning

confidence: 99%

Organizational factors’ effects on the success of e-learning systems and organizational benefits: An empirical study in Taiwan

Liu¹,

Huang

Lin

2012

IRRODL

View full text Add to dashboard Cite

<p>E-learning development for enterprises is still in its infancy in that scholars are still working on identifying the critical success factors for e-learning in organizational contexts. This study presents a framework considering how organizational factors affect the quality and service of e-learning systems and how these factors influence organizational benefits in the view of IS success model and resource-based theory. A questionnaire survey of 120 Taiwanese companies was performed to validate the framework. The results show that top management support, information security policy, and institutional policy are positively related to system quality, while top management support, organizational learning culture, and institutional policy are positively related to system service. Additionally, system service is significantly related to organizational benefits. Our model provides two novel aspects of e-learning study. Firstly, we extend IS success model by incorporating four organizational factors as antecedences influencing system quality and system service. Secondly, the model is framed and examined on an organizational level, which provides a top-down view for managers when designing and implementing e-learning systems in the organizational context.</p>

show abstract

An integrated view of human, organizational, and technological challenges of IT security management

Cited by 110 publications

References 26 publications

Failure Factors of ERP Projects in an Iranian Context

Failure Factors of ERP Projects in an Iranian Context

An Enterprise Anti-phishing Framework

Organizational factors’ effects on the success of e-learning systems and organizational benefits: An empirical study in Taiwan

Contact Info

Product

Resources

About