An Action Research Program to Improve Information Systems Security Compliance across Government Agencies

Big Island, Hawaii January 03-January 06

DOI Bookmark:

http://doi.ieeecomputersociety.org/10.1109/HICSS.2007.58

40th Annual Hawaii International Conf ...

	This Article
	PURCHASE ARTICLE: $0 PDF HTML IEEE Xplore Subscribers
	Share
	Email this Article to a friend
	Bibliographic References
	ASCII Text BibTex RefWorks Procite/RefMan/Endnote
	Add to:
	Digg Furl Spurl Blink Simpy Google Del.icio.us Y!MyWeb
	Search
	Similar Articles Articles by Stephen Smith Articles by Rodger Jamieson Articles by Donald Winchester

	ASCII Text	x
	Stephen Smith, Rodger Jamieson, Donald Winchester, "An Action Research Program to Improve Information Systems Security Compliance across Government Agencies," Hawaii International Conference on System Sciences, pp. 99c, 40th Annual Hawaii International Conference on System Sciences (HICSS'07), 2007.

	BibTex	x
	@article{ 10.1109/HICSS.2007.58, author = {Stephen Smith and Rodger Jamieson and Donald Winchester}, title = {An Action Research Program to Improve Information Systems Security Compliance across Government Agencies}, journal ={Hawaii International Conference on System Sciences}, volume = {0}, year = {2007}, issn = {1530-1605}, pages = {99c}, doi = {http://doi.ieeecomputersociety.org/10.1109/HICSS.2007.58}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, }

	RefWorks Procite/RefMan/Endnote	x
	TY - CONF JO - Hawaii International Conference on System Sciences TI - An Action Research Program to Improve Information Systems Security Compliance across Government Agencies SN - 1530-1605 SP EP A1 - Stephen Smith, A1 - Rodger Jamieson, A1 - Donald Winchester, PY - 2007 KW - null VL - 0 JA - Hawaii International Conference on System Sciences ER -

Stephen Smith, University of NSW, Australia

Rodger Jamieson, University of NSW, Australia

Donald Winchester, University of NSW, Australia

Information Systems Security (ISSec) compliance is an important aspect of implementing e-government. This paper presents results from an action research project using longitudinal surveys as interventions to enhance understanding and improve security across the whole of the NSW government, in Australia. The ISO Standard AS/NZS ISO/IEC 17799:2001 Information Technology ? Code of practice for information security management, was used a framework for developing the survey research instrument. The major findings are that this action research program led to an improvement in ISSec compliance by agencies, increased understanding and knowledge as agencies became more aware of ISSec issues, improved agencies ISSec policies and plans, as well as improved business continuity plans. This research is innovative as it is the first time that ISSec has been explored using an action research framework across whole of government.

Citation:

Stephen Smith, Rodger Jamieson, Donald Winchester, "An Action Research Program to Improve Information Systems Security Compliance across Government Agencies," hicss, pp.99c, 40th Annual Hawaii International Conference on System Sciences (HICSS'07), 2007

Peer Review Notice | Give Us Feedback

Usage of this product signifies your acceptance of the Terms of Use.