Designing Effective Knowledge Transfer Practices to Improve IS Security Awareness and Compliance

Author

SanNicolas-Rocca, Tonia ; Schooley, Benjamin ; Spears, Janine L.

Author_Institution

San Jose State Univ., San Jose, CA, USA

fYear

2014

fDate

6-9 Jan. 2014

Firstpage

3432

Lastpage

3441

Abstract

Institutions of higher education capture, store and disseminate information that is protected by state and federal regulations. As a result, IS security policies are developed and implemented to ensure end user compliance. This case study investigates end user knowledge of their university´s IS security policy and proposes a new approach to improve end user compliance. The results of this study suggest that users may be contributors to the transfer of IS security policies when provided with an opportunity to participate in the development of an IS security awareness and training program.

Keywords

computer science education; educational institutions; further education; information dissemination; information systems; knowledge management; security of data; training; IS security awareness development; IS security training program; end user compliance; end user knowledge; federal regulations; higher education Institutions; information capture; information dissemination; information storage; information systems security policy; knowledge transfer practices; state regulations; university IS security policy transfer; Educational institutions; Information security; Knowledge transfer; Training; Compliance; IS security; Knowledge Transfer; User participation;

fLanguage

English

Publisher

ieee

Conference_Titel

System Sciences (HICSS), 2014 47th Hawaii International Conference on

Conference_Location

Waikoloa, HI

Type

conf

DOI

10.1109/HICSS.2014.427

Filename

6759029