Universiti Teknologi Malaysia Institutional Repository

Users' perception of the information security policy at Universiti Teknologi Malaysia

Sharif, Haniza (2009) Users' perception of the information security policy at Universiti Teknologi Malaysia. Masters thesis, Universiti Teknologi Malaysia, Faculty of Computer Science and Information System.

[img] PDF
Restricted to Repository staff only

2567Kb
[img] PDF
127Kb
[img] PDF
78Kb
[img] PDF
96Kb

Abstract

Securing information is essential for safeguarding the organization business operations as information is a business asset to any organization including education sector. One of the most imperative information security (InfoSec) controls identified is InfoSec policy. The purpose of this study is to gauge the level of enforcement and effectiveness of Universiti Teknologi Malaysia's (UTM) InfoSec policy from the users perspective. This study involved three phases of data collection, namely preliminary study, interview and survey. The preliminary study allows an exploratory activity in understanding the information technology (IT) arrangement and organizational structural practices in UTM environment. Next, an interview with an IT-expert aimed to understand the establishment of the InfoSec in UTM. Then, a survey questionnaire is distributed to post-graduate and non-IT staff of UTM, International Campus, Kuala Lumpur to gauge the level of users perception on the institution's security policy. The study had found that that nearly half of the users perceived that they are aware, understand and accept the UTMs policy, with more than half of the them agreed that the UTMs policy is effective. The study also proposed a theoretical framework model for the effectiveness of the institutions InfoSec policy. The model which consists of enforcement, users awareness, users understanding and users acceptance identified as the independent variables, whereas an effectiveness of InfoSec policy identified as dependant variable. This proposed framework model may be useful as a basis for reference not only for researchers in this field but also for practitioner in developing the InfoSec policy.

Item Type:Thesis (Masters)
Additional Information:Thesis (Sarjana Sains Komputer (Keselamatan Maklumat)) - Universiti Teknologi Malaysia, 2009; Supervisor : Dr. Zuraini Ismail
Uncontrolled Keywords:information security controls, users' perception, case study : Universiti Teknologi Malaysia's (UTM)
Subjects:Q Science > QA Mathematics > QA75 Electronic computers. Computer science
Divisions:Computer Science and Information System (Formerly known)
ID Code:5291
Deposited By: Ms Zalinda Shuratman
Deposited On:01 Apr 2008 05:27
Last Modified:06 Aug 2012 02:33

Repository Staff Only: item control page