The impacts of organizational culture on information security culture: a case study

Information security cannot rely solely on technology. More attention must be drawn to the users’ behavioral perspectives regarding information security. In this study, we propose that a culture encouraging employees to comply with information policies related to collecting, preserving, disseminatin...

Ausführliche Beschreibung

Gespeichert in:

Bibliographische Detailangaben
Veröffentlicht in:	Information technology and management 2016-06, Vol.17 (2), p.179-186
Hauptverfasser:	Tang, Mincong, Li, Meng’gang, Zhang, Tao
Format:	Artikel
Sprache:	eng
Schlagworte:	Analysis Behavior Business and Management Case studies Computer Communication Networks Computer information security Consciousness Corporate culture Culture Data Structures and Information Theory Employees Information dissemination Information technology IT in Business Literature reviews Management Operations Research/Decision Theory Organizational aspects Organizations Preserving Security management Studies Values
Online-Zugang:	Volltext
Tags:	Tag hinzufügen Keine Tags, Fügen Sie den ersten Tag hinzu!

container_end_page	186
container_issue	2
container_start_page	179
container_title	Information technology and management
container_volume	17
creator	Tang, Mincong Li, Meng’gang Zhang, Tao
description	Information security cannot rely solely on technology. More attention must be drawn to the users’ behavioral perspectives regarding information security. In this study, we propose that a culture encouraging employees to comply with information policies related to collecting, preserving, disseminating and managing information will improve information security. Information security culture is believed to be influenced by an organization’s corporate culture (or organizational culture). We examine how this occurs through an in-depth case study of a large organization. We present a relationship map for organizational culture and information security practices. Six propositions are drawn from the findings of our interviews and discussions. Managerial insights, such as how to measure an organization’s information security culture and subsequently determine what perspective(s) is important for the organization to improve, are also discussed.
doi_str_mv	10.1007/s10799-015-0252-2
format	Article
fullrecord	<record><control><sourceid>proquest_cross</sourceid><recordid>TN_cdi_proquest_miscellaneous_1816079275</recordid><sourceformat>XML</sourceformat><sourcesystem>PC</sourcesystem><sourcerecordid>1816079275</sourcerecordid><originalsourceid>FETCH-LOGICAL-c387t-43eb9fa235a70c727e847460e3ee637c032e32700a97c8f90c1f5d4c724db5543</originalsourceid><addsrcrecordid>eNp1kE1LxDAQhoMouK7-AG8BL16qk6TJtN5E_IIFD67gLWSz6dqlbdakPay_3qxVEMHTDMzzvjAPIacMLhgAXkYGWJYZMJkBlzzje2TCJIoMlcL9tItCZqVkr4fkKMY1AFMc1YQ8z98crduNsX2kvqI-rExXf5i-9p1pqB2afgiO-o7WXeVD-3Wg0dkh1P32535FDbUmOhr7Ybk9JgeVaaI7-Z5T8nJ3O795yGZP948317PMigL7LBduUVaGC2kQLHJ0RY65AiecUwItCO4ERwBToi2qEiyr5DJPZL5cSJmLKTkfezfBvw8u9rqto3VNYzrnh6hZwVSywlEm9OwPuvZDSB8mCkvggqFUiWIjZYOPMbhKb0LdmrDVDPROsx4166RZ7zRrnjJ8zMTEdisXfjX_G_oEy0B_YA</addsrcrecordid><sourcetype>Aggregation Database</sourcetype><iscdi>true</iscdi><recordtype>article</recordtype><pqid>1790231756</pqid></control><display><type>article</type><title>The impacts of organizational culture on information security culture: a case study</title><source>SpringerLink Journals - AutoHoldings</source><creator>Tang, Mincong ; Li, Meng’gang ; Zhang, Tao</creator><creatorcontrib>Tang, Mincong ; Li, Meng’gang ; Zhang, Tao</creatorcontrib><description>Information security cannot rely solely on technology. More attention must be drawn to the users’ behavioral perspectives regarding information security. In this study, we propose that a culture encouraging employees to comply with information policies related to collecting, preserving, disseminating and managing information will improve information security. Information security culture is believed to be influenced by an organization’s corporate culture (or organizational culture). We examine how this occurs through an in-depth case study of a large organization. We present a relationship map for organizational culture and information security practices. Six propositions are drawn from the findings of our interviews and discussions. Managerial insights, such as how to measure an organization’s information security culture and subsequently determine what perspective(s) is important for the organization to improve, are also discussed.</description><identifier>ISSN: 1385-951X</identifier><identifier>EISSN: 1573-7667</identifier><identifier>DOI: 10.1007/s10799-015-0252-2</identifier><language>eng</language><publisher>New York: Springer US</publisher><subject>Analysis ; Behavior ; Business and Management ; Case studies ; Computer Communication Networks ; Computer information security ; Consciousness ; Corporate culture ; Culture ; Data Structures and Information Theory ; Employees ; Information dissemination ; Information technology ; IT in Business ; Literature reviews ; Management ; Operations Research/Decision Theory ; Organizational aspects ; Organizations ; Preserving ; Security management ; Studies ; Values</subject><ispartof>Information technology and management, 2016-06, Vol.17 (2), p.179-186</ispartof><rights>Springer Science+Business Media New York 2015</rights><rights>Springer Science+Business Media New York 2016</rights><lds50>peer_reviewed</lds50><woscitedreferencessubscribed>false</woscitedreferencessubscribed><citedby>FETCH-LOGICAL-c387t-43eb9fa235a70c727e847460e3ee637c032e32700a97c8f90c1f5d4c724db5543</citedby><cites>FETCH-LOGICAL-c387t-43eb9fa235a70c727e847460e3ee637c032e32700a97c8f90c1f5d4c724db5543</cites></display><links><openurl>$$Topenurl_article</openurl><openurlfulltext>$$Topenurlfull_article</openurlfulltext><thumbnail>$$Tsyndetics_thumb_exl</thumbnail><linktopdf>$$Uhttps://link.springer.com/content/pdf/10.1007/s10799-015-0252-2$$EPDF$$P50$$Gspringer$$H</linktopdf><linktohtml>$$Uhttps://link.springer.com/10.1007/s10799-015-0252-2$$EHTML$$P50$$Gspringer$$H</linktohtml><link.rule.ids>314,780,784,27924,27925,41488,42557,51319</link.rule.ids></links><search><creatorcontrib>Tang, Mincong</creatorcontrib><creatorcontrib>Li, Meng’gang</creatorcontrib><creatorcontrib>Zhang, Tao</creatorcontrib><title>The impacts of organizational culture on information security culture: a case study</title><title>Information technology and management</title><addtitle>Inf Technol Manag</addtitle><description>Information security cannot rely solely on technology. More attention must be drawn to the users’ behavioral perspectives regarding information security. In this study, we propose that a culture encouraging employees to comply with information policies related to collecting, preserving, disseminating and managing information will improve information security. Information security culture is believed to be influenced by an organization’s corporate culture (or organizational culture). We examine how this occurs through an in-depth case study of a large organization. We present a relationship map for organizational culture and information security practices. Six propositions are drawn from the findings of our interviews and discussions. Managerial insights, such as how to measure an organization’s information security culture and subsequently determine what perspective(s) is important for the organization to improve, are also discussed.</description><subject>Analysis</subject><subject>Behavior</subject><subject>Business and Management</subject><subject>Case studies</subject><subject>Computer Communication Networks</subject><subject>Computer information security</subject><subject>Consciousness</subject><subject>Corporate culture</subject><subject>Culture</subject><subject>Data Structures and Information Theory</subject><subject>Employees</subject><subject>Information dissemination</subject><subject>Information technology</subject><subject>IT in Business</subject><subject>Literature reviews</subject><subject>Management</subject><subject>Operations Research/Decision Theory</subject><subject>Organizational aspects</subject><subject>Organizations</subject><subject>Preserving</subject><subject>Security management</subject><subject>Studies</subject><subject>Values</subject><issn>1385-951X</issn><issn>1573-7667</issn><fulltext>true</fulltext><rsrctype>article</rsrctype><creationdate>2016</creationdate><recordtype>article</recordtype><sourceid>ABUWG</sourceid><sourceid>AFKRA</sourceid><sourceid>BENPR</sourceid><sourceid>CCPQU</sourceid><sourceid>DWQXO</sourceid><recordid>eNp1kE1LxDAQhoMouK7-AG8BL16qk6TJtN5E_IIFD67gLWSz6dqlbdakPay_3qxVEMHTDMzzvjAPIacMLhgAXkYGWJYZMJkBlzzje2TCJIoMlcL9tItCZqVkr4fkKMY1AFMc1YQ8z98crduNsX2kvqI-rExXf5i-9p1pqB2afgiO-o7WXeVD-3Wg0dkh1P32535FDbUmOhr7Ybk9JgeVaaI7-Z5T8nJ3O795yGZP948317PMigL7LBduUVaGC2kQLHJ0RY65AiecUwItCO4ERwBToi2qEiyr5DJPZL5cSJmLKTkfezfBvw8u9rqto3VNYzrnh6hZwVSywlEm9OwPuvZDSB8mCkvggqFUiWIjZYOPMbhKb0LdmrDVDPROsx4166RZ7zRrnjJ8zMTEdisXfjX_G_oEy0B_YA</recordid><startdate>20160601</startdate><enddate>20160601</enddate><creator>Tang, Mincong</creator><creator>Li, Meng’gang</creator><creator>Zhang, Tao</creator><general>Springer US</general><general>Springer Nature B.V</general><scope>AAYXX</scope><scope>CITATION</scope><scope>0U~</scope><scope>1-H</scope><scope>3V.</scope><scope>7SC</scope><scope>7WY</scope><scope>7WZ</scope><scope>7XB</scope><scope>87Z</scope><scope>8AO</scope><scope>8FD</scope><scope>8FE</scope><scope>8FG</scope><scope>8FK</scope><scope>8FL</scope><scope>ABUWG</scope><scope>AFKRA</scope><scope>ARAPS</scope><scope>BENPR</scope><scope>BEZIV</scope><scope>BGLVJ</scope><scope>CCPQU</scope><scope>DWQXO</scope><scope>FRNLG</scope><scope>F~G</scope><scope>HCIFZ</scope><scope>JQ2</scope><scope>K60</scope><scope>K6~</scope><scope>L.-</scope><scope>L.0</scope><scope>L7M</scope><scope>L~C</scope><scope>L~D</scope><scope>M0C</scope><scope>P5Z</scope><scope>P62</scope><scope>PQBIZ</scope><scope>PQBZA</scope><scope>PQEST</scope><scope>PQQKQ</scope><scope>PQUKI</scope><scope>Q9U</scope></search><sort><creationdate>20160601</creationdate><title>The impacts of organizational culture on information security culture: a case study</title><author>Tang, Mincong ; Li, Meng’gang ; Zhang, Tao</author></sort><facets><frbrtype>5</frbrtype><frbrgroupid>cdi_FETCH-LOGICAL-c387t-43eb9fa235a70c727e847460e3ee637c032e32700a97c8f90c1f5d4c724db5543</frbrgroupid><rsrctype>articles</rsrctype><prefilter>articles</prefilter><language>eng</language><creationdate>2016</creationdate><topic>Analysis</topic><topic>Behavior</topic><topic>Business and Management</topic><topic>Case studies</topic><topic>Computer Communication Networks</topic><topic>Computer information security</topic><topic>Consciousness</topic><topic>Corporate culture</topic><topic>Culture</topic><topic>Data Structures and Information Theory</topic><topic>Employees</topic><topic>Information dissemination</topic><topic>Information technology</topic><topic>IT in Business</topic><topic>Literature reviews</topic><topic>Management</topic><topic>Operations Research/Decision Theory</topic><topic>Organizational aspects</topic><topic>Organizations</topic><topic>Preserving</topic><topic>Security management</topic><topic>Studies</topic><topic>Values</topic><toplevel>peer_reviewed</toplevel><toplevel>online_resources</toplevel><creatorcontrib>Tang, Mincong</creatorcontrib><creatorcontrib>Li, Meng’gang</creatorcontrib><creatorcontrib>Zhang, Tao</creatorcontrib><collection>CrossRef</collection><collection>Global News & ABI/Inform Professional</collection><collection>Trade PRO</collection><collection>ProQuest Central (Corporate)</collection><collection>Computer and Information Systems Abstracts</collection><collection>ABI/INFORM Collection</collection><collection>ABI/INFORM Global (PDF only)</collection><collection>ProQuest Central (purchase pre-March 2016)</collection><collection>ABI/INFORM Global (Alumni Edition)</collection><collection>ProQuest Pharma Collection</collection><collection>Technology Research Database</collection><collection>ProQuest SciTech Collection</collection><collection>ProQuest Technology Collection</collection><collection>ProQuest Central (Alumni) (purchase pre-March 2016)</collection><collection>ABI/INFORM Collection (Alumni Edition)</collection><collection>ProQuest Central (Alumni Edition)</collection><collection>ProQuest Central UK/Ireland</collection><collection>Advanced Technologies & Aerospace Collection</collection><collection>ProQuest Central</collection><collection>Business Premium Collection</collection><collection>Technology Collection</collection><collection>ProQuest One Community College</collection><collection>ProQuest Central Korea</collection><collection>Business Premium Collection (Alumni)</collection><collection>ABI/INFORM Global (Corporate)</collection><collection>SciTech Premium Collection</collection><collection>ProQuest Computer Science Collection</collection><collection>ProQuest Business Collection (Alumni Edition)</collection><collection>ProQuest Business Collection</collection><collection>ABI/INFORM Professional Advanced</collection><collection>ABI/INFORM Professional Standard</collection><collection>Advanced Technologies Database with Aerospace</collection><collection>Computer and Information Systems Abstracts Academic</collection><collection>Computer and Information Systems Abstracts Professional</collection><collection>ABI/INFORM Global</collection><collection>Advanced Technologies & Aerospace Database</collection><collection>ProQuest Advanced Technologies & Aerospace Collection</collection><collection>ProQuest One Business</collection><collection>ProQuest One Business (Alumni)</collection><collection>ProQuest One Academic Eastern Edition (DO NOT USE)</collection><collection>ProQuest One Academic</collection><collection>ProQuest One Academic UKI Edition</collection><collection>ProQuest Central Basic</collection><jtitle>Information technology and management</jtitle></facets><delivery><delcategory>Remote Search Resource</delcategory><fulltext>fulltext</fulltext></delivery><addata><au>Tang, Mincong</au><au>Li, Meng’gang</au><au>Zhang, Tao</au><format>journal</format><genre>article</genre><ristype>JOUR</ristype><atitle>The impacts of organizational culture on information security culture: a case study</atitle><jtitle>Information technology and management</jtitle><stitle>Inf Technol Manag</stitle><date>2016-06-01</date><risdate>2016</risdate><volume>17</volume><issue>2</issue><spage>179</spage><epage>186</epage><pages>179-186</pages><issn>1385-951X</issn><eissn>1573-7667</eissn><abstract>Information security cannot rely solely on technology. More attention must be drawn to the users’ behavioral perspectives regarding information security. In this study, we propose that a culture encouraging employees to comply with information policies related to collecting, preserving, disseminating and managing information will improve information security. Information security culture is believed to be influenced by an organization’s corporate culture (or organizational culture). We examine how this occurs through an in-depth case study of a large organization. We present a relationship map for organizational culture and information security practices. Six propositions are drawn from the findings of our interviews and discussions. Managerial insights, such as how to measure an organization’s information security culture and subsequently determine what perspective(s) is important for the organization to improve, are also discussed.</abstract><cop>New York</cop><pub>Springer US</pub><doi>10.1007/s10799-015-0252-2</doi><tpages>8</tpages></addata></record>
fulltext	fulltext
identifier	ISSN: 1385-951X
ispartof	Information technology and management, 2016-06, Vol.17 (2), p.179-186
issn	1385-951X 1573-7667
language	eng
recordid	cdi_proquest_miscellaneous_1816079275
source	SpringerLink Journals - AutoHoldings
subjects	Analysis Behavior Business and Management Case studies Computer Communication Networks Computer information security Consciousness Corporate culture Culture Data Structures and Information Theory Employees Information dissemination Information technology IT in Business Literature reviews Management Operations Research/Decision Theory Organizational aspects Organizations Preserving Security management Studies Values
title	The impacts of organizational culture on information security culture: a case study
url	https://sfx.bib-bvb.de/sfx_tum?ctx_ver=Z39.88-2004&ctx_enc=info:ofi/enc:UTF-8&ctx_tim=2025-01-07T10%3A44%3A53IST&url_ver=Z39.88-2004&url_ctx_fmt=infofi/fmt:kev:mtx:ctx&rfr_id=info:sid/primo.exlibrisgroup.com:primo3-Article-proquest_cross&rft_val_fmt=info:ofi/fmt:kev:mtx:journal&rft.genre=article&rft.atitle=The%20impacts%20of%20organizational%20culture%20on%20information%20security%20culture:%20a%20case%20study&rft.jtitle=Information%20technology%20and%20management&rft.au=Tang,%20Mincong&rft.date=2016-06-01&rft.volume=17&rft.issue=2&rft.spage=179&rft.epage=186&rft.pages=179-186&rft.issn=1385-951X&rft.eissn=1573-7667&rft_id=info:doi/10.1007/s10799-015-0252-2&rft_dat=%3Cproquest_cross%3E1816079275%3C/proquest_cross%3E%3Curl%3E%3C/url%3E&disable_directlink=true&sfx.directlink=off&sfx.report_link=0&rft_id=info:oai/&rft_pqid=1790231756&rft_id=info:pmid/&rfr_iscdi=true