Information security culture: A general living systems theory perspective

Author

Reid, Rob ; Van Niekerk, Johan ; Renaud, Karen

Author_Institution

Sch. of ICT, Nelson Mandela Metropolitan Univ., Port Elizabeth, South Africa

fYear

2014

fDate

13-14 Aug. 2014

Firstpage

1

Lastpage

8

Abstract

Information security culture (ISC) is often acknowledged as being a vital subculture within an organizational culture. As a subculture, its purpose is to fulfil its security purpose, while integrating into, and supporting, the broader organizational culture. However, in contrast, few discussions of ISCs acknowledge that the ISC itself is comprised of subcultures. The research literature´s lack of exploration of this nested nature of ISC may be hindering in-depth understanding of the ISC as a system within itself, as well as within the broader organizational culture. This paper will therefore address this by straying from traditional views of ISCs. We will examine an ISC as a self-managing, self-repairing collective of multiple ISCs which meet the organizational culture´s security needs. The paper´s objective is to show that an ISC can be viewed and understood as a living system.

Keywords

business data processing; organisational aspects; security of data; general living systems theory perspective; information security culture; multiple ISCs; organizational culture security; Educational institutions; Information security; Measurement; conceptual; general living systems theory; information security culture;

fLanguage

English

Publisher

ieee

Conference_Titel

Information Security for South Africa (ISSA), 2014

Conference_Location

Johannesburg

Print_ISBN

978-1-4799-3383-9

Type

conf

DOI

10.1109/ISSA.2014.6950493

Filename

6950493