期刊名称:Journal of Theoretical and Applied Information Technology
印刷版ISSN:1992-8645
电子版ISSN:1817-3195
出版年度:2015
卷号:78
期号:2
出版社:Journal of Theoretical and Applied
摘要:Human factor represent an essential issue in the security of information in organizations, as human factor determine the behavior of the employees toward information security. This paper attempts to integrate related human factors, recognized by previous work, into a structured comprehensive framework. The framework has four main domains that take the form of a diamond. Two domains are concerned with the environment and management issues representing an organization dimension; while the other two are related to preparedness and responsibility issues giving an employee dimension. The domains at the four corners of the diamond interact with one another influencing the human behavior toward information security. Expert views on the framework have been collected through a survey that addresses the importance of its various components to human behavior. The framework provides a base for the future investigation of information security protection in organizations, and the development of controls for this purpose.
关键词:Human Factor; Information Security; Human Behavior; Information Security Controls; Insider (Employee) Threats
