Information security governance challenges and critical success factors: Systematic review
Abstract Information security is a critical aspect and plays a significant role in protecting an
organization's business. Organizations are required to safeguard their information and …
organization's business. Organizations are required to safeguard their information and …
[HTML][HTML] Learning from safety science: A way forward for studying cybersecurity incidents in organizations
In the aftermath of cybersecurity incidents within organizations, explanations of their causes
often revolve around isolated technical or human events such as an Advanced Persistent …
often revolve around isolated technical or human events such as an Advanced Persistent …
[HTML][HTML] Information security risk assessments following cybersecurity breaches: The mediating role of top management attention to cybersecurity
Abstract Information Systems (IS) research on managerial response to cybersecurity
breaches has largely focused on externally oriented actions such as customer redressal and …
breaches has largely focused on externally oriented actions such as customer redressal and …
Defining organisational information security culture—Perspectives from academia and industry
The ideal or strong information security culture can aid in minimising the threat of humans to
information protection and thereby aid in reducing data breaches or incidents in …
information protection and thereby aid in reducing data breaches or incidents in …
A cyber-security culture framework for assessing organization readiness
A Georgiadou, S Mouzakitis, K Bounas… - Journal of Computer …, 2022 - Taylor & Francis
This paper presents a cyber-security culture framework for assessing and evaluating the
current security readiness of an organization's workforce. Having conducted a thorough …
current security readiness of an organization's workforce. Having conducted a thorough …
Why security and privacy research lies at the centre of the information systems (IS) artefact: Proposing a bold research agenda
In this essay, we outline some important concerns in the hope of improving the effectiveness
of security and privacy research. We discuss the need to re-examine our understanding of …
of security and privacy research. We discuss the need to re-examine our understanding of …
A framework and assessment instrument for information security culture
A Da Veiga, JHP Eloff - Computers & security, 2010 - Elsevier
An organisation's approach to information security should focus on employee behaviour, as
the organisation's success or failure effectively depends on the things that its employees do …
the organisation's success or failure effectively depends on the things that its employees do …
[HTML][HTML] A comprehensive model of information security factors for decision-makers
Decision-making in the context of organizational information security is highly dependent on
various information. For information security managers, not only relevant information has to …
various information. For information security managers, not only relevant information has to …
Cultivating security culture for information security success: A mixed-methods study based on anthropological perspective
GPS Tejay, ZA Mohammed - Information & Management, 2023 - Elsevier
The continuous information security failures in organizations have led focus toward
organizational culture. It is argued that the development of culture of information security …
organizational culture. It is argued that the development of culture of information security …
Information security knowledge sharing in organizations: Investigating the effect of behavioral information security governance and national culture
WR Flores, E Antonsen, M Ekstedt - Computers & security, 2014 - Elsevier
This paper presents an empirical investigation on what behavioral information security
governance factors drives the establishment of information security knowledge sharing in …
governance factors drives the establishment of information security knowledge sharing in …