Users' perception of the information security policy at Universiti Teknologi Malaysia
Securing information is essential for safeguarding the organization business operations as information is a business asset to any organization including education sector. One of the most imperative information security (InfoSec) controls identified is InfoSec policy. The purpose of this study is to...
Saved in:
| Main Author: | |
|---|---|
| Format: | Thesis |
| Language: | English |
| Published: |
2009
|
| Subjects: | |
| Online Access: | http://eprints.utm.my/id/eprint/5291/1/HanizaSharifMFSKSM2009.pdf |
| Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
| id |
my-utm-ep.5291 |
|---|---|
| record_format |
uketd_dc |
| spelling |
my-utm-ep.52912018-02-28T07:56:21Z Users' perception of the information security policy at Universiti Teknologi Malaysia 2009-04 Sharif, Haniza QA75 Electronic computers. Computer science Securing information is essential for safeguarding the organization business operations as information is a business asset to any organization including education sector. One of the most imperative information security (InfoSec) controls identified is InfoSec policy. The purpose of this study is to gauge the level of enforcement and effectiveness of Universiti Teknologi Malaysia's (UTM) InfoSec policy from the users perspective. This study involved three phases of data collection, namely preliminary study, interview and survey. The preliminary study allows an exploratory activity in understanding the information technology (IT) arrangement and organizational structural practices in UTM environment. Next, an interview with an IT-expert aimed to understand the establishment of the InfoSec in UTM. Then, a survey questionnaire is distributed to post-graduate and non-IT staff of UTM, International Campus, Kuala Lumpur to gauge the level of users perception on the institution's security policy. The study had found that that nearly half of the users perceived that they are aware, understand and accept the UTMs policy, with more than half of the them agreed that the UTMs policy is effective. The study also proposed a theoretical framework model for the effectiveness of the institutions InfoSec policy. The model which consists of enforcement, users awareness, users understanding and users acceptance identified as the independent variables, whereas an effectiveness of InfoSec policy identified as dependant variable. This proposed framework model may be useful as a basis for reference not only for researchers in this field but also for practitioner in developing the InfoSec policy. 2009-04 Thesis http://eprints.utm.my/id/eprint/5291/ http://eprints.utm.my/id/eprint/5291/1/HanizaSharifMFSKSM2009.pdf application/pdf en public masters Universiti Teknologi Malaysia, Faculty of Computer Science and Information System Faculty of Computer Science and Information System |
| institution |
Universiti Teknologi Malaysia |
| collection |
UTM Institutional Repository |
| language |
English |
| topic |
QA75 Electronic computers Computer science |
| spellingShingle |
QA75 Electronic computers Computer science Sharif, Haniza Users' perception of the information security policy at Universiti Teknologi Malaysia |
| description |
Securing information is essential for safeguarding the organization business operations as information is a business asset to any organization including education sector. One of the most imperative information security (InfoSec) controls identified is InfoSec policy. The purpose of this study is to gauge the level of enforcement and effectiveness of Universiti Teknologi Malaysia's (UTM) InfoSec policy from the users perspective. This study involved three phases of data collection, namely preliminary study, interview and survey. The preliminary study allows an exploratory activity in understanding the information technology (IT) arrangement and organizational structural practices in UTM environment. Next, an interview with an IT-expert aimed to understand the establishment of the InfoSec in UTM. Then, a survey questionnaire is distributed to post-graduate and non-IT staff of UTM, International Campus, Kuala Lumpur to gauge the level of users perception on the institution's security policy. The study had found that that nearly half of the users perceived that they are aware, understand and accept the UTMs policy, with more than half of the them agreed that the UTMs policy is effective. The study also proposed a theoretical framework model for the effectiveness of the institutions InfoSec policy. The model which consists of enforcement, users awareness, users understanding and users acceptance identified as the independent variables, whereas an effectiveness of InfoSec policy identified as dependant variable. This proposed framework model may be useful as a basis for reference not only for researchers in this field but also for practitioner in developing the InfoSec policy. |
| format |
Thesis |
| qualification_level |
Master's degree |
| author |
Sharif, Haniza |
| author_facet |
Sharif, Haniza |
| author_sort |
Sharif, Haniza |
| title |
Users' perception of the information security policy at Universiti Teknologi Malaysia |
| title_short |
Users' perception of the information security policy at Universiti Teknologi Malaysia |
| title_full |
Users' perception of the information security policy at Universiti Teknologi Malaysia |
| title_fullStr |
Users' perception of the information security policy at Universiti Teknologi Malaysia |
| title_full_unstemmed |
Users' perception of the information security policy at Universiti Teknologi Malaysia |
| title_sort |
users' perception of the information security policy at universiti teknologi malaysia |
| granting_institution |
Universiti Teknologi Malaysia, Faculty of Computer Science and Information System |
| granting_department |
Faculty of Computer Science and Information System |
| publishDate |
2009 |
| url |
http://eprints.utm.my/id/eprint/5291/1/HanizaSharifMFSKSM2009.pdf |
| _version_ |
1747814572451954688 |