Employing the social-technical perspective in identifying security management systems in organisations

Authors:
Suhazimah Dzazali;Sulaiman Ainin;Ali Hussein Saleh Zolait
Affiliations:
Faculty of Business and Accountancy, University of Malaya, 50603 Kuala Lumpur, Malaysia.;Faculty of Business and Accountancy, University of Malaya, 50603 Kuala Lumpur, Malaysia.;Faculty of Business and Accountancy, Department of Business, Amran University, Amran-Khamer, P.O. Box 41000, Khamer, Republic of Yemen
Venue:
International Journal of Business Information Systems
Year:
2009

Citing 13
Cited 4

Designing information systems security

Designing information systems security
Multivariate data analysis (4th ed.): with readings

Multivariate data analysis (4th ed.): with readings
Information Security Risk Analysis

Information Security Risk Analysis
Information Security Architecture: An Integrated Approach to Security in the Organization

Information Security Architecture: An Integrated Approach to Security in the Organization
Electronic Commerce 2004: A Managerial Perspective

Electronic Commerce 2004: A Managerial Perspective
Adopting an Enterprise Software Security Framework

IEEE Security and Privacy
Marketing Research: An Applied Orientation and SPSS 14.0 Student CD (5th Edition)

Marketing Research: An Applied Orientation and SPSS 14.0 Student CD (5th Edition)
Using Multivariate Statistics (5th Edition)

Using Multivariate Statistics (5th Edition)
Information security and risk management

Communications of the ACM - The psychology of security: why do good users make bad decisions?
The first decade of e-commerce

International Journal of Business Information Systems
E-commerce implementation challenges: small to medium-sized versus large organisations

International Journal of Business Information Systems
Components of disaster-tolerant computing: analysis of disaster recovery, IT application downtime and executive visibility

International Journal of Business Information Systems
Analysis of modern IS security development approaches: towards the next generation of social and adaptable ISS methods

Information and Organization

Incorporating social-cultural contexts in role engineering: an activity theoretic approach

International Journal of Business Information Systems
Maximising resource allocation effectiveness for IT security investments

International Journal of Business Information Systems
A fuzzy classification approach to assess e-commerce security perception

International Journal of Business Information Systems
Effects of implementing information security management systems on the performance of marketing and sales departments

International Journal of Business Information Systems

Quantified Score

Hi-index	0.00

Visualization

Abstract

Information resources are critical assets of most 21st century organisations. The emergence of many different information security threats necessitates organisations to seek advice and acquire the latest knowledge that is required to defeat these threats and securely manage their companies' information systems. Accordingly, this research proposes a new theoretical perspective, to be called 'the Integrated Social-Technical System Theory', in which researchers attempt to analyse and identify the underlying dimensions of Information Security Management (ISM). The researchers employed the quantitative approach using a sample that was obtained from the key players of information security in the Malaysian Public Service (MPS) organisations. The results of the multivariate test revealed the underlying dimensions. One of the identified dimensions is information security maturity, (positioned as the dependent variable) and a few other variables are positioned as technical and social factors.