최소 단어 이상 선택하여야 합니다.
최대 10 단어까지만 선택 가능합니다.
다음과 같은 기능을 한번의 로그인으로 사용 할 수 있습니다.
NTIS 바로가기한국융합학회논문지 = Journal of the Korea Convergence Society, v.9 no.9, 2018년, pp.69 - 81
The ultimate intention of this research is to identify the factors that have a significant effect on the perceived importance of information security as the antecedent of intention to information security policy compliance. We found that the effectiveness of information security training program did...
핵심어 | 질문 | 논문에서 추출한 답변 |
---|---|---|
중소기업이 기술적 대안 도입을 주저하는 이유는? | 기술적 대안의 경우 도입 즉시 효과가 발생한다는 점에서는 매우 효과적인 정보보안 수단이다. 하지만 첫째, 중소기업 입장에서 기술적 대안의 도입 및 유지 보수에 있어서 비용 부담이 된다는 점에서 적극적인 도입을 주저하게 만든다. 심지어 최근의 경제 악화로 중소기업들이 보안 예산을 축소하고 있다. | |
조직 침묵 중 체념적 침묵과 회피적 침묵이란? | Morrison and Milliken(2000)은 조직 침묵을 체념적 침묵(acquiescent silence)과 회피적 침묵(quiescentsilence)으로 구분하였는데, 체념적 침묵은 단념(resignation)에 기반을 둔 체념적 행위(disengaged behaviour)이며, 회피적 침묵은 두려움에 기반을 둔 자기보호행위이다[11]. Van Dyne et al. | |
ICT가 양날의 칼이 될 수 있는 이유는? | 하지만 ICT는 양날의 칼이다[2]. 선의의 목적으로 사용될 경우 개인과 조직의성과를 향상시킬 수 있는 거대한 잠재력을 가지고 있다[2]. 악의적으로 사용할 경우 개인, 조직, 더 나아가 사회에 거대한 위협이 될 수 있다[2]. 실제로 정보보안 사고(Information Security Breaches)는 조직에 추가적인 사고 처리 비용을 발생시키며, 기업의 명성에도 치명적 영향을 미친다[3]. |
Stanton, J. M., Stam, K. R., Mastrangelo, P., & Jolton, J. (2005), Analysis of End User Security Behaviors, Computers & Security, 24(2), 124-133.
Liang, H., & Xue, Y. (2010), Understanding Security Behaviors in Personal Computer Usage: A Threat Avoidance Perspective, Journal of the Association for Information Systems, 11(7), 394-413.
Safa, N. S., Von Solms, R., & Furnell, S. (2016), Information Security Policy Compliance Model in Organizations, Computers & Security, 56, 1-13.
Bulgurcu, B., Cavusoglu, H., & Banbasat, I. (2010), Information Security Policy Compliance: An Empirical Study of Rationality-Based Beliefs and Information Security Awareness, MIS Quarterly, 34(3), 523-548.
Crossler, R. E., Johnston, A. C., Lowry, P. B., Hu, Q., Warkentin, M., & Baskerville, R. (2013), Future Directions for Behavioral Information Security Research, Computers & Security, 32, 90-101.
D'Arcy, J., & Hovav, A. (2007), Deterring Internal Information Systems Misuse, Communications of the ACM, 50(10), 113-117.
Ifinedo, P. (2012), Understanding Information Systems Security Policy Compliance: An Integration of the Theory of Planned Behavior and the Protection Motivation Theory, Computers & Security, 31, 83-95.
Goel, S., & Chengalur-Smith, I., (2010), Metrics for Characterizing the Form of Security Policies, Journal of Strategic Information Systems, 19(4), 281-295.
Van Dyne, L., Ang, S., & Botero, I. C. (2003), Conceptualizing Employee Silence and Employee Voice as Multidimensional Constructs, Journal of Management Studies, 40(6), 1359-1392.
Pinder, C. C., & Harlos, K. P. 2001, Employee Silence: Quiescence and Acquiescence as Responses to Perceived Injustice. In Rowland, K. M., & Rerris, G. R. (eds), Research in Personnel and Human Resources Management, 20, New York: JAI Press, 331-369.
Morrison, E. W., & Milliken, F. J. (2000), Organizational Silence: A Barrier to Change and Development in a Pluralistic World, Academy of Management Review, 25, 706-725.
Soomro, Z. A., Shah, M. H., & Ahmed, J. 2016, Information Security Management Needs More Holistic Approach: A Literature Review, International Journal of Information Management, Vol. 36, pp. 215-225.
Knapp, K. J., & Ferrante, C. J. (2012), Policy Awareness, Enforcement and Maintenance: Critical to Information Security Effectiveness in Organizations, Journal of Management Policy and Practice, 13(5), 66-80.
Puhakainen, P., & Siponen, M. (2010), Improving Employees' Compliance through Information Systems Security Training: An Action Research Study, MIS Quarterly, 34(4), 757-778.
Mishra, S., & Chasalow, L. (2011), Information Security Effectiveness: A Research Framework, Issues in Information Systems, 12(1), 246-255.
Stewart, A. (2004), On Risk: Perception and Direction, Computers & Security, 23, 362-370.
Zhang, J., Reithel, B. J., & Li, H. (2009), Impact of Perceived Technical Protection on Security Behaviors, Information Management & Computer Security, 17(4), 330-340.
Gopal, R. D., & Sanders, G. L. (1997), Preventative and Deterrent Controls for Software Piracy, Journal of Management Information Systems, 13(4), 29-47.
Wiant, T. L. (2003), Policy and its Impact on Medical Record Security, Unpublished Doctoral Dissertation, University of Kentucky, Lexington.
Foltz, C. B. (2000), The Impact of Deterrent Countermeasures upon Individual Intent to Commit Misuse: A Behavioral Approach, Unpublished Doctoral Dissertation, University of Arkansas, Fayetteville.
Harrington, S. J. (1996), The Effect of Codes of Ethics and Personal Denial of Responsibility on Computer Abuse Judgments and Intentions, MIS Quarterly, 20(3), 257-278.
Lee, S. M., Lee, S. -G., & Yoo, S. (2004), An Integrative Model of Computer Abuse Based on Social Control and General Deterrence Theories, Information and Management, 41(6), 707-718.
Knapp, K. J., Marshall, T. E., Rainer, Jr., R. K., & Ford, F. N. (2007), Information Security Effectiveness: Conceptualization and Validation of a Theory, International Journal of Information Security and Privacy, 1(2), 37-60.
Chan, M., Woon, I., & Kankanhalli, A. (2005), Perceptions of Information Security in the Workplace: Linking Information Security Climate to Compliant Behavior, Journal of Information Privacy and Security, 1(3).
Siponen, M. T. (2000), A Conceptual Foundation for Organizational Information Security Awareness, Information Management & Computer Security, 8(1), 31-41.
Vakola, M., & Bouradas, D., (2005), Antecedents and Consequences of Organisational Silence: An Empirical Investigation, Employee Relations, 27(5), 441-458.
Vroom, C., & von Solms, R. (2004), Towards Information Security Behavioural Compliance, Computer & Security, 23, 191-198.
Kankanhalli, H., Teo, H. -H., Tan, B. C. Y., & Wei, K. -K. (2003), An Integrative Study of Information Systems Security Effectiveness, International Journal of Information Management, 23(2), 139-154.
Leonard, L. N. K., Cronan, T. P., & Kreie, J. (2004), What Influences IT Ethical Behavior Intentions- Planned Behavior, Reasoned Action, Perceived Importance, or Individual Characteristics?, Information & Management, 42, 143-158.
Churchill, G. A. (1979), A Paradigm for Developing Better Measures of Marketing Constructs, Journal of Marketing, 9(4), 168-178.
Moore, G. C., & Benbasat, I. (1991), Development of an Instrument to Measure the Perceptions of Adopting an Information Technology Innovation, Information Systems Research, 2(3), 192-222.
Workman, M., Bommer, W. H., & Straub, D. (2008), Security Lapses and the Omission of Information Security Measures: A Threat Control Model and Empirical Test, Computers in Human Behavior, 24(6), 2799-2816.
Barclay, D., Higgins, C., & Thompson, R. (1995), The Partial Least Squares (PLS) Approach to Causal Modeling: Personal Computer Adoption and Use as an Illustration, Technology Studies, 2(2), 285-309.
Gefen, D., & Straub, D. (2005), A Practical Guide to Factorial Validity Using PLS-graph: Tutorial and Annotated Example, Communications of the AIS, 16(5), 91-109.
Chin, W. W., & Sambamurthy, V. (1994), The Effects of Group Attitudes toward Alternative GDSS Designs on the Decision-Making Performance of Computer- Supported Groups, Decision Sciences, 25(2), 215-241.
Hair, J. F., Black, B., Babin, B., & Anderson, R. E. (2010), Multivariate Data Analysis, 7th eds., Upper Saddle River, NJ, PrenticeHall.
Cronbach, L. J. (1951), Coefficient Alpha and the Internal Structure of Tests, Psychometrika, 16, 297-334.
Fornell, C., & Larker, D. F. (1981), Evaluating Structural Equation Models with Unobservable Variables and Measurement Error, Journal of Marketing Research, 18(1), 39-50.
Nunnally, J. C. 1978, Psychometric Theory, New York, NY: McGraw-Hill.
Cook, T. D., & Campbell, D. T. (1979), Quasi-Experimentation: Design and Analysis Issues for Field Setting, Boston, MA: Houghton Mifflin.
Grant, R. A. (1989), Building and Testing a Causal Model of an Information Technology's Impact, Proceedings of the Ten International Conference on Information Systems, December 4-6, Boston, MA, 173-184.
Fornell, C. (1982), A Second Generation of Multivariate Analysis: Methods, 1, New York, NY: Praeger.
Chin, W. W. (1998), Issues and Opinion on Structural Equation Modeling, MIS Quarterly, 22(1), vii-xvi.
Gefen, D., Straub, D. W., & Boudreau, M. C. (2000), Structural Equation Modeling and Regression: Guidelines for Research Practice, Communications of the AIS, 4, 1-77.
*원문 PDF 파일 및 링크정보가 존재하지 않을 경우 KISTI DDS 시스템에서 제공하는 원문복사서비스를 사용할 수 있습니다.
출판사/학술단체 등이 한시적으로 특별한 프로모션 또는 일정기간 경과 후 접근을 허용하여, 출판사/학술단체 등의 사이트에서 이용 가능한 논문
※ AI-Helper는 부적절한 답변을 할 수 있습니다.