AWARENESS OF ICT SECURITY POLICY TO ENSURE DATA PROTECTION IN FORESTRY DEPARTMENT PENINSULAR MALAYSIA

2021 ◽  
Vol 7 (2) ◽  
pp. 65-74
Author(s):  
Reanee Lee ◽  
Ain Suzana Ariffin
Keyword(s):  
Information Security ◽  
Security Policy ◽  
Service Providers ◽  
Public Awareness ◽  
Peninsular Malaysia ◽  
Primary Data ◽  
Security Awareness ◽  
Information Security Awareness ◽  
Ict Security ◽  
The Impact

The Forestry Department Peninsular Malaysia's (FDPM) ICT Security Policy was developed and implemented in 2012 and reviewed in 2015. This policy aims to take the lead in managing data, hardware, software, network, and ICT security under legal regulations. Amongst the department's responsibilities are to implement data confidentiality, integrity, and availability policies to ensure the continuity of activities and services while mitigating the impact of security incidents. Accidentally, on September 16, 2016, a fire broke out in the FDPM building, causing property damage and document destruction with an estimated loss of RM30 million. Currently, in Malaysia, cybercrime and government data intrusion has become increasingly difficult to combat. Raising public awareness, particularly among officers who serve as service providers and department employees, is therefore critical to address those issues. Therefore, the objectives of this research are to determine the level of awareness of FDPM employees regarding FDPM ICT Security Policy as well as to investigate the factors that influence information security awareness. Inputs from this study were derived from both primary and secondary sources to meet the objectives. Primary data was gathered through surveys where 130 questionnaires were distributed to FDPM headquarters employees at the management, professional, and support team levels. Meanwhile, secondary data was gathered from FDPM annual and management reports, statistical data, journals, reference documents, and the Internet. The findings were analyzed statistically using SPSS. The level of awareness has been determined and an appropriate criterion to improve the level of information security awareness among FDPM employees was recommended which may help for a better understanding of department culture and increase a higher level of security awareness among FDPM employees.

Readiness for information security of teachers as a function of their personality traits and their assessment of threats

2020 ◽  
Vol 72 (5) ◽  
pp. 787-812
Author(s):  
Noa Aharony ◽  
Dan Bouhnik ◽  
Nurit Reich
Keyword(s):  
Information Security ◽  
Personality Traits ◽  
Cultural Change ◽  
Design Methodology ◽  
Educational Institutions ◽  
Security Awareness ◽  
Content Type ◽  
Information Security Awareness ◽  
Secure Information ◽  
The Impact

PurposeThis study examines the impact of personality traits on the degree of challenge experienced by individuals with respect to the threat on their information, the evaluation of their self-efficacy to secure the information and hence, their readiness to secure information.Design/methodology/approachThe study's population consisted of 157 teachers from various educational institutions across Israel. We used five questionnaires to gather data.FindingsFindings reveal a link between participants' personality traits, situation evaluation indicators and their readiness to secure information. Further, the greater subjects' information security awareness and familiarity with information security concepts, the better their application of the tools for securing information will be.Originality/valueThe importance of this research lies primarily in that it highlights the importance of individual differences while dealing with information security awareness. The findings constitute a theoretical and empirical basis for building tools toward guiding teachers to protect their information, as well as for devising educational and pedagogic programs for making a cultural change.

Cybercrime: an emerging threat to the banking sector of Pakistan

2019 ◽  
Vol 26 (1) ◽  
pp. 50-60 ◽  
Author(s):  
Muhammad Shoukat Malik ◽  
Urooj Islam
Keyword(s):  
Information Security ◽  
Organizational Performance ◽  
Banking Sector ◽  
Negative Impact ◽  
Survey Design ◽  
Security Awareness ◽  
Content Type ◽  
Information Security Awareness ◽  
Hr Managers ◽  
The Impact

Purpose The purpose of this study is to gain more insight into the impact of cybercrime incidents in the banking sector of Pakistan. This study investigates the significant contribution of information security awareness on the relationship of cybercrimes and organizational performance. Design/methodology/approach The impact of cybercrime incidents on organizational performance is investigated by further exploring the moderating effects of information security awareness. A sample of 302 employees in the banking industry of Pakistan was studied by using survey design. Findings Cybercrime incidents have negative impact on organizational performance, but information security awareness weakens the negative impact of cybercrimes on organizational performance. Research limitations/implications The present study focuses on the banking sector so its finding cannot be generalized in other sectors. Further, in-depth comparative studies in other sectors with different cultural settings will help to authenticate the research findings. Practical implications Information security awareness weakens the negative impact of cybercrimes on organizational performance; therefore, it is important for banks’ HR managers to set up more security training courses to increase employees’ awareness on cybercrimes. Originality/value This study explores the impact of cybercrimes on banks’ performance with the moderating role of employees’ information security awareness. Linking these topics has created a new study within the cybercrimes discipline. The present study also enhances the understanding of employees’ role to combat the impact of cybercrimes on organizational performance.

scholarly journals SECURITY POLICY COMPLIANCE IN PUBLIC INSTITUTIONS: AN INTEGRATIVE APPROACH

2018 ◽  
Vol 2 (1) ◽  
pp. 13-28
Author(s):  
Daniel Koloseni ◽  
Chong Yee Lee ◽  
Gan Ming Lee
Keyword(s):  
Organizational Commitment ◽  
Information Security ◽  
Security Policy ◽  
Structural Equation ◽  
Public Organizations ◽  
Security Policies ◽  
Integrative Approach ◽  
Security Awareness ◽  
Information Security Policy ◽  
Information Security Awareness

The success of organizational information security policies depends on employee’s continuous compliance from the time when it was first introduced into the organization. Hence, the purpose of this study is to investigate continuous compliance with information security policy among public organizations. Data were collected from 265 employees working in Tanzania public organizations. Data analysis employed a Structural Equation Modelling (SEM) approach. The study found that the effects of organizational commitment, perceived susceptibility and perceived severity have a positive influence on employee’s continuance intention to comply with security policies, while perceived barriers have a negative influence. Moreover, the effects of perceived benefits, self-efficacy, cues and information security awareness have no significant influence. Based on these findings, recommendations were given. There is a paucity of empirical research which investigates key issues that may influence information security policy continuous compliance in organizations. This study addresses this research gap, by integrating the Health Belief Model (HBM) with employee’s organizational commitment and information security awareness constructs to investigate information security policy continuance compliance in organizations.

scholarly journals Determinants of Information Security Awareness among Employees of Capital Market Registrars in Lagos, Nigeria: An Empirical Study

2019 ◽  
Vol 8 (1) ◽  
pp. 48-52
Author(s):  
Samuel Oluranti Oladipupo
Keyword(s):  
Information Security ◽  
Capital Market ◽  
Security Policy ◽  
Survey Design ◽  
Sampling Technique ◽  
Security Awareness ◽  
Information Security Awareness ◽  
Security Education ◽  
Policy Information ◽  
Research Findings

The purpose of the study is to examine the determinants of information security awareness (ISA) among employees of Capital Market Registrars (CMRs) in Lagos, Nigeria based on established factors from the existing literatures on ISA. The main objectives of the study are; to determine the level of information security awareness among CMRs’ employees and to identify the components that influence information security awareness. This study utilised a survey design. Stratified random sampling technique was used to select the respondents for the study. A total of 326 copies of questionnaires were distributed among the employees in CMRs, of which 267 properly completed questionnaires were returned. Descriptive statistics and simple regression were used for data analysis. Finding revealed that information security policy, information security education, knowledge of technology, and employee’s behaviour significantly influenced information security awareness. The results of the study further revealed the strong correlation between employee’s behaviour and information security awareness. Overall, the study showed that the level of information security awareness is high, which implies that employees of CMRs in Lagos are aware of the potential threats and risk associated with information security. Based on these research findings, recommendations were therefore made.

Sign in / Sign up

Export Citation Format

Share Document