“…For example, the information security risk analysis method (ISRAM) helps to check the risks attached to the information system with the participation from the managers and staffs of the company (Karabacak and Sogukpinar, 2005). Types of the businesses included in prior research encompass the common Internet shops (Holbein and Gaugler, 1999), aviation companies (Chang, 2005), or telecommunications industry (Ekenberg, Oberoi, and Orci, 1995).…”