کد مقاله کد نشریه سال انتشار مقاله انگلیسی نسخه تمام متن
557060 874545 2009 14 صفحه PDF دانلود رایگان
عنوان انگلیسی مقاله ISI
National information security policy and its implementation: A case study in Taiwan
موضوعات مرتبط
مهندسی و علوم پایه مهندسی کامپیوتر سیستم های اطلاعاتی
پیش نمایش صفحه اول مقاله
National information security policy and its implementation: A case study in Taiwan
چکیده انگلیسی

Cyberspace is no longer safe. From business organizations to countries, the requirements of information security and assurance have become one of the most important functions to ensure continued operations. The goal of this study is twofold. First, we introduce the information security policy of the Taiwanese government and its current status. Then we present a successful example of governmental institute that self-adopted the information security management system (ISMS), British Standard 7799 (ISO27001). The results of this research indicate that past successful experiences, availability of documents, cost constraints, organization learning and organizational culture are important motivations of self-implementation of ISMS. Past experience of other standards, level of documentation and standardization, degree of understanding the clauses, procedures of risk management, top management support, culture of organization, existing auditing infrastructure, awareness of information security, education and compatibility with the existing procedures are the key factors of successful self-implementation of ISMS.

ناشر
Database: Elsevier - ScienceDirect (ساینس دایرکت)
Journal: Telecommunications Policy - Volume 33, Issue 7, August 2009, Pages 371–384
نویسندگان
, , ,