Identifying Governance Dimensions to Evaluate Information Systems Security in Organizations

Author

Dhillon, Gurpreet ; Tejay, Gurvirender ; Hong, Weiyin

Author_Institution

Virginia Commonwealth Univ., Richmond, VA

fYear

2007

fDate

Jan. 2007

Abstract

Prior studies in information systems security have a limited emphasis on empirically identifying security dimensions. This research paper presents the results of an empirical study to understand governance dimensions of information systems security. The research study was conducted in three phases involving interviews, an exploratory phase and a confirmatory phase. The exploratory phase generated a 4-factor, 16-item model for behavioral security of an organization. The confirmatory phase involving structural equation modeling validated the impact of governance dimensions on the overall information systems security of an organization. Data was collected from two different samples of 163 and 175 respondents for each phase respectively. The results suggest that the governance dimensions impact information system security of an organization through behavioral security

Keywords

information systems; security of data; governance dimension identification; information system security; Code standards; Computer hacking; Data security; Equations; Ethics; Information management; Information security; Information systems; Information technology; Management information systems;

fLanguage

English

Publisher

ieee

Conference_Titel

System Sciences, 2007. HICSS 2007. 40th Annual Hawaii International Conference on

Conference_Location

Waikoloa, HI

ISSN

1530-1605

Electronic_ISBN

1530-1605

Type

conf

DOI

10.1109/HICSS.2007.257

Filename

4076695