Information security is defined as protection of confidentiality, integrity as well as information access (Chen, Ramamurthy & Wen, 2012)). There is evidence which suggests that, regardless of technical controls numbers in place, institutions of higher learning such as Central Michigan University will still have to deal with security breaches. Information security does not only refer to technical problems, but is also known as ‘people’ problem. This is because most breaches occur when the people in an organization do not comply with information security policies pertaining to that particular organization. Information security compliance may be defined as information security standards as well as policies implementation for protection of information
…show more content…
It is very much related to organizational culture. Organizational culture is a system of beliefs, attitudes and perceptions which characterize the relationships in a workplace. Influence of Information Security Awareness on ISPs Compliance Contents of the Information Security Policy (ISP) are updated every often, probably on a yearly basis. The policy often comprises a number of areas of environment that require controlling. New policies are created, existent ones are upgraded and also new employees are recruited, all these changes require that fresh information be disseminated. In other words, they need to inform. Some scholars perceive Information Security Awareness (ISA) as the general knowledge of employees about information security as well as their cognizance of Information Security Policy of their organizations. This is seen as overall knowledge of the employees and comprehension of potential concerns relating to information security as well as their ramifications. The employees should also know and understand requirements prescribed in the ISP of an organization such as Central Michigan University as well as aims of such requirements. There are significant relationship which is positive between information security awareness and attitude to
It is very much related to organizational culture. Organizational culture is a system of beliefs, attitudes and perceptions which characterize the relationships in a workplace. Influence of Information Security Awareness on ISPs Compliance Contents of the Information Security Policy (ISP) are updated every often, probably on a yearly basis. The policy often comprises a number of areas of environment that require controlling. New policies are created, existent ones are upgraded and also new employees are recruited, all these changes require that fresh information be disseminated. In other words, they need to inform. Some scholars perceive Information Security Awareness (ISA) as the general knowledge of employees about information security as well as their cognizance of Information Security Policy of their organizations. This is seen as overall knowledge of the employees and comprehension of potential concerns relating to information security as well as their ramifications. The employees should also know and understand requirements prescribed in the ISP of an organization such as Central Michigan University as well as aims of such requirements. There are significant relationship which is positive between information security awareness and attitude to