Information systems security policies adoption: an institutional theory view

Information systems security policies are pointed out in literature as one of the main measures to be taken by organizations for protecting their information systems. Despite this, it has been observed that, in several sectors of activity, the number of organizations having adopted that measure is l...

Full description

Bibliographic Details
Main Author: Lopes, Isabel Maria (author)
Other Authors: Sá-Soares, Filipe de (author)
Format: conferenceObject
Language:eng
Published: 2014
Subjects:
Information systems security policies adoption
Information systems security
Institutionalization
Institutional theory
Online Access:http://hdl.handle.net/10198/10921
Country:Portugal
Oai:oai:bibliotecadigital.ipb.pt:10198/10921
Description
Summary:Information systems security policies are pointed out in literature as one of the main measures to be taken by organizations for protecting their information systems. Despite this, it has been observed that, in several sectors of activity, the number of organizations having adopted that measure is low. This study aimed to identify the factors which condition the adoption of information systems security policies by organizations. Methodologically, the study involved interviewing the officials in charge of the information systems in 44 Town Councils in Portugal. The factors facilitating and inhibiting the adoption of information systems security policies are presented and discussed. Based on these factors, a set of recommendations to enhance the adoption of information systems security policies is proposed. The study used Institutional Theory as theoretical framework.

Similar Items