Development of Information Security Competency in Students

This article describes methodological aspects of developing students’ information security competencies. In the article, the author clarifies the essence of the concept of “information security”, its various aspects, the relationship between the development of information security competency and information-analytical competence, as well as the methodological conditions of information-analytical function. In addition, he substantiates the importance of vitagenic education technology in the development of students’ information-analytical competency, and, on the basis of experimental materials, the correlation between the components of development of students’ information security competency.

Download Full-text

Research on the Impact of Information Security Certification and Concealment onFinancial Performance

Journal of Global Information Management ◽

10.4018/jgim.20220801oa04 ◽

2022 ◽

Vol 30 (3) ◽

pp. 0-0

Keyword(s):

Information Security ◽

Financial Performance ◽

Positive Impact ◽

Rapid Development ◽

International Standards ◽

Corporate Decisions ◽

Using Data ◽

The Impact ◽

The Relationship ◽

Iso 27001

With the rapid development of information technology, information security has been gaining attention. The International Organization for Standardization (ISO) has issued international standards and technical reports related to information security, which are gradually being adopted by enterprises. This study analyzes the relationship between information security certification (ISO 27001) and corporate financial performance using data from Chinese publicly listed companies. The study focusses on the impact of corporate decisions such as whether to obtain certification, how long to hold certification, and whether to publicize information regarding certification. The results show that there is a positive correlation between ISO 27001 and financial performance. Moreover, the positive impact of ISO 27001 on financial performance gradually increases with time. In addition, choosing not to publicize ISO 27001 certification can negatively affect enterprise performance.

Download Full-text

Psychological, Pedagogical and Drganizational Peculiarities of the Development of Students’ Volitional Qualities as a Factor of Success in Learning

Pedagogika-Pedagogy ◽

10.53656/ped2021-6.08 ◽

2021 ◽

Author(s):

Nadiia Vientseva ◽

◽

Oleva Karapetrova

Keyword(s):

Higher Education ◽

Theoretical Analysis ◽

Empirical Study ◽

University Students ◽

Education Institution ◽

Educational Material ◽

Academic Achievements ◽

The Impact ◽

The Relationship ◽

Development Of Students

The article reports the results of the empirical study of the impact of volitional qualities development on the level of academic achievements of higher education institution students. The article gives a theoretical analysis of the main types of volitional qualities that affect the assimilation of educational material by students. There was established the level of their development and the relationship with academic achievements. The article also identifies the main psycho-pedagogical and organizational peculiarities that affect the success of mastering the knowledge by university students. The psychological and pedagogical recommendations for forming, developing and supporting the volitional sphere of students are developed.

Download Full-text

THE CONCEPT OF INFORMATION SECURITY IN THE CONTEXT OF THE SCIENCE OF PUBLIC ADMINISTRATION

PUBLIC ADMINISTRATION AND LAW REVIEW ◽

10.36690/2674-5216-2020-4-15 ◽

2020 ◽

pp. 15-20

Author(s):

Yaroslav Chmyr ◽

Keyword(s):

Information Security ◽

Public Administration ◽

Concept Of Information

Download Full-text

Information Security in E-Government: Legal Aspects

Cuestiones Políticas - Conflictividad política, pandemia de COVID-19 y nuevos paradigmasConflictividad política, pandemia de COVID-19 y nuevos paradigmas ◽

10.46398/cuestpol.3969.22 ◽

2021 ◽

Vol 39 (69) ◽

pp. 361-372

Author(s):

Viacheslav Politanskyi ◽

Dmytro Lukianov ◽

Hanna Ponomarova ◽

Oleh Gyliaka

Keyword(s):

Information Security ◽

Computer Security ◽

Deep Understanding ◽

Legal Aspects ◽

Political Situation ◽

Modern Computer ◽

Information And Communication ◽

Security Infrastructure ◽

Definition Of ◽

Concept Of Information

The article examines the characteristics of the functioning of information security in the e-government system, a phenomenon that is only possible based on the development of the information security infrastructure. The authors analyze information security as a key element of the concept of e-government, as well as various interpretations and ways of explaining the concept of information security. The research team's approach to the definition of the concept of information security is formed from the deep understanding of this concept, in terms of general theoretical analysis. Topics, objects, functions, types, principles, forms, levels of provision and structural elements of information security are studied. It is concluded that the organization of modern computer security of the State is undoubtedly a complex, systemic and multilevel phenomenon, whose state, dynamics, and perspectives are directly influenced by many external and internal factors, the most important being the political situation. In the world the presence of possible external and internal threats; state and level of development of information and communication of the country and internal political situation, among other aspects.

Download Full-text

IMPROVEMENT OF INFORMATION SECURITY OF THE COMMUNICATION PROCESS AT THE ENTERPRISE

Соціально-правові студії ◽

10.32518/2617-4162-2021-3-156-162 ◽

2021 ◽

Vol 13 (3) ◽

pp. 156-162

Author(s):

Nataliya Blaga ◽

◽

Volodymyr Hobela

Keyword(s):

Information Security ◽

Information Technologies ◽

Remote Access ◽

Communication Process ◽

Information Structures ◽

Essential Information ◽

Security Breaches ◽

Information Awareness ◽

Concept Of Information ◽

Medium Enterprises

The mechanism of communication process and information security at an enterprise is considered. The theoretical aspects of the communications at the enterprise are based on the variety of its form and the relation of organizational and information structures: most activities have underlying links via information processes. Thus information security of communication process has a significant impact on the information security of the enterprise as a whole. In modern conditions and circumstances, the information security of the enterprise is largely reduced to cybersecurity and suffers from most threats of the latter. However, the human factor is responsible for most of the real facts of inflicting harm due to information security breaches. Thus, traditional mechanisms of privacy and confidentiality ensuring need to be adapted to new realities. New opportunities also set new requirements for understanding the very concept of information security: information must not only be protected but also timely and accurate as far as it is possible to be provided with modern telecommunication systems and information technologies: information security is a system of information protection of the enterprise – protection against theft, delayed and inaccurate providing of essential information to the recipient inside the enterprise or outside it. There are proposed and justified four principles necessary but not sufficient to ensure efficient mechanism of information security regarding communication process at small to medium enterprises. These include information awareness of staff even if they are not advanced with information technologies, traditional methods of protection against cyber threats such as passwords and encryption, control over information flows and the infrastructure that provides them, reliable cooperation and protection of remote access. These principles should be followed by managers at all levels.

Download Full-text

Modern problems of ensuring information security in the educational and pedagogical sphere

Informatics and Education ◽

10.32517/0234-0453-2021-36-10-57-64 ◽

2021 ◽

pp. 57-64

Author(s):

М. М. Abdurazakov ◽

Z. О. Batygov

Keyword(s):

Information Security ◽

General Education ◽

General Concept ◽

Information Protection ◽

Educational Training ◽

Educational Processes ◽

Personal Qualities ◽

Knowledge Competencies ◽

Concept Of Information

The article deals with the problems of information security and its provision in relation to society and its educational environment, processes and relations, subjects and objects. The necessity of forming the corresponding subject-information competence of subjects, personal culture of information security is shown.It is noted that the information security of educational subjects is a specific part of the general security of education as its qualitative development in the developing information society in accordance with its properties and requirements. The concept of information security in the field of education is formulated in the context of a general concept and in the aspect of its specificity in education, its educational and educational processes, as well as in the aspect of personal, psychological, age and other properties of subjects of education. This presupposes the presence of a corresponding purposefulness of general education, which also acquires the quality of informational education, and its expression in the content of education and subject-oriented educational training. In particular, this applies to the general education subject “Informatics” as the main resource of information education, in the process of forming the relevant knowledge, competencies and personal qualities.The necessity of mandatory inclusion of the relevant topics in the content of information education in the context of information security and information protection has been substantiated: the state and problems of information security, personal security; goals and objectives of information security; legal and other aspects of information protection, means of protecting electronic data in the field of education.

Download Full-text

Information Security and Information Assurance

Organizational, Legal, and Technological Dimensions of Information System Administration - Advances in Systems Analysis, Software Engineering, and High Performance Computing ◽

10.4018/978-1-4666-4526-4.ch010 ◽

2014 ◽

pp. 167-198 ◽

Cited By ~ 2

Author(s):

Yulia Cherdantseva ◽

Jeremy Hilton

Keyword(s):

Information Security ◽

Information Assurance ◽

Education Programs ◽

Definition Of ◽

The Relationship

Despite great interest of researchers and professionals in Information Security (InfoSec) and Information Assurance (IA), there is still no commonly agreed understanding of the disciplines. This chapter clarifies the meaning, scope, and goals of InfoSec and IA as well as the relationship between the disciplines. Clarity of the scope and goals of InfoSec and IA is important because this knowledge serves as a foundation for the definition of (1) curricula for the InfoSec and IA education programs, (2) responsibilities of practitioners, and (3) organisations' InfoSec strategy and policies. The study analyses US and European InfoSec- and IA-related official publications and standards and discusses the perception of the disciplines in academic and industry works. The study highlights the importance of clear and precise definitions of InfoSec and IA and a need for the definitions to promote open-mindedness among practitioners and researchers. Since the existing definitions of InfoSec and IA do not fully reflect the complexity and the evolving nature of the disciplines, the contemporary adapted definitions of InfoSec and IA are elaborated in the chapter.

Download Full-text

Investigating the Concept of Information Security Culture

Strategic and Practical Approaches for Information Security Governance ◽

10.4018/978-1-4666-0197-0.ch001 ◽

2012 ◽

pp. 1-12 ◽

Cited By ~ 3

Author(s):

Daniel Oost ◽

Eng K. Chew

Keyword(s):

Information Security ◽

Future Research ◽

Security Culture ◽

Second Nature ◽

Human Aspect ◽

Concept Of Information ◽

Mystical State ◽

Published Research ◽

Information Security Culture

The concept of an “information security culture” is relatively new. A review of published research on the topic suggests that it is not the information security panacea that has been suggested. Instead, it tends to refer to a range of existing techniques for addressing the human aspect of information security, oversimplifying the link between culture and behaviour, exaggerating the ease with which a culture can be adjusted, and treating culture as a monolith, set from the top. Evidence for some of the claims is also lacking. This chapter finds that the term “information security culture” is ambiguous and vague enough to suggest the possibility of achieving an almost mystical state, whereby behaviour consistent with information security is second nature to all employees, but when probed does not deliver. Instead, future research should be clear about what it considers information security culture to be, should provide evidence for claims, and should take complexity and context seriously.

Download Full-text

Effects of Team Collaboration on Sharing Information Security Advice

Research Anthology on Artificial Intelligence Applications in Security ◽

10.4018/978-1-7998-7705-9.ch084 ◽

2021 ◽

pp. 1900-1915

Author(s):

Duy Dang-Pham ◽

Mathews Nkhoma

Keyword(s):

Information Security ◽

Team Collaboration ◽

Exponential Random Graph Modeling ◽

Security Environment ◽

Graph Modeling ◽

Exponential Random Graph ◽

Research Findings ◽

Collaborative Activities ◽

Security Advice ◽

The Relationship

Active sharing of information security advice among the employees has undeniable implications for developing a sustainable security environment. This research examines this topic from the network perspective, and focuses on the work relationships that promote sharing security advice. Exponential random graph modeling technique was employed to evaluate the relationship between team collaborative activities and sharing security advice. The findings revealed that those who share security advice also tend to give work- and IT-related knowledge. Moreover, employees who have similar tenure tend to exchange security advice with each other more. Furthermore, the network of sharing security advice is transitive and has a tendency to form separate clusters. Security managers are suggested to take into account the research findings to identify key employees who frequently share security advice in the workplace and devise appropriate strategies to manage them.

Download Full-text

A Case Study of Effectively Implemented Information Systems Security Policy

Information Security and Ethics ◽

10.4018/978-1-59904-937-3.ch118 ◽

2008 ◽

pp. 1727-1740

Author(s):

Charla Griffy-Brown ◽

Mark W.S. Chun

Keyword(s):

Information Security ◽

Security Policy ◽

Case Analysis ◽

Web Based ◽

Systems Security ◽

Policies And Procedures ◽

Technical Architecture ◽

The Relationship

This chapter demonstrates the importance of a well-formulated and articulated information security policy by integrating best practices with a case analysis of a major Japanese multinational automotive manufacturer and the security lessons it learned in the implementation of its Web-based portal. The relationship between information security and business needs and the conflict that often results between the two are highlighted. The case also explores the complexities of balancing business expedience with long-term strategic technical architecture. The chapter provides insight and offers practical tools for effectively developing and implementing information security policies and procedures in contemporary business practice.

Download Full-text