Change search
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf
Organizational effects and management of information security: A cross-sectoral case study of three different organizations
Luleå University of Technology, Department of Computer Science, Electrical and Space Engineering.
2017 (English)Independent thesis Basic level (university diploma), 10 credits / 15 HE creditsStudent thesisAlternative title
Organisatoriska effekter och hanteringen av Informationssäkerhet : En studie av tre olika organisationer (Russian)
Abstract [en]

Information technology (IT) can be used to empower an organization to enable it to continue evolving. One aspect in which an organization can evolve is in the form of information security. Previously, information security has been seen as a concern only for the IT-department. However, as the number of threats towards information has rapidly grown over the years, the concern for information security has also increased. The issue on how to keep information safe from unauthorized people has become more important as well as questioned over the years. During the last decades, the concept of information security has evolved to become a multi-dimensional concern affecting entire communities, societies, and organizations. This means that information security has been managed differently in the past, but today, new and other measures are required to ensure the secrecy of certain information. Due to this, organizations are forced to implement certain measures to counter these threats, but what are the effects of this?

This thesis compares three different organizations over three different sectors and the purpose is to investigate the effects information security might have within an organization as well as how these effects are managed. With a focus on policies, training, and education of employees as well as the employee awareness, this thesis aims to answer how organizations see information security. Further, it aims to find out what consequences these effects have on their daily work. The results from this study have shown that increased security measures need to be highly motivated and in continuous dialogue with the employees to bring incentives for further use of the measures. An increase in information security can have a damaging effect on efficiency. Therefore, it is important that the organization is able to ensure the desired effect of increased security. With larger openness and accessibility, employees will have easier and quicker access to the information needed, which is essential for the effectivity within the organization, as well as higher incentives for attacks and malpractice of information.

Abstract [sv]

Denna uppsats jämför tre olika organisationer verksamma i olika sektorer, syftet är att undersöka effekterna  informationssäkerhet kan ha på en organisation men även hur dessa effkter är hanterade. 

Med fokus på policy, träning av anställda men också medvetenheten så siktar denna uppsats på att svara på hur organisationer ser informationssäkerhet. Den kommer också att försöka hitta vad konsekvenserna av informationssäkerhet i det dagliga arbetet. 

Resultatet från denna studie visar att ökad informationssäkerhet måste vara motiverat och i konstant dialog med användarna och implementera incitament för att öka motivet. Ökad informationssäkerhet kan ha en skadande effekt på effektiviteten, därför är det viktigt att organisationerna får den önskade effekten de vill av den ökade säkerheten. Genom mer transparans och tillgänglighet så medför det också att anställda har lättare att hitta rätt information som behös vilket är nödvändigt för effektivitet inom organisationen, men detta ökar även incitament för olika typer av attacker och misskötsel av information. 

Place, publisher, year, edition, pages
2017.
Keyword [en]
Information security, effects, organization, IT-Security, organizational effects.
National Category
Information Systems
Identifiers
URN: urn:nbn:se:ltu:diva-66020OAI: oai:DiVA.org:ltu-66020DiVA, id: diva2:1148330
Educational program
Social Informatics, bachelor's level
Supervisors
Examiners
Available from: 2017-10-12 Created: 2017-10-10 Last updated: 2018-01-13Bibliographically approved

Open Access in DiVA

fulltext(3591 kB)82 downloads
File information
File name FULLTEXT01.pdfFile size 3591 kBChecksum SHA-512
22e915db2ec3d754f73a1f923037cfdde80a24e0ccd50e8f554d7cba936c0e038127828db53c3f5090137e717c81f6a2def388e391e3cb92e6a1d1fde9e86f44
Type fulltextMimetype application/pdf

By organisation
Department of Computer Science, Electrical and Space Engineering
Information Systems

Search outside of DiVA

GoogleGoogle Scholar
Total: 82 downloads
The number of downloads is the sum of all downloads of full texts. It may include eg previous versions that are now no longer available

urn-nbn

Altmetric score

urn-nbn
Total: 81 hits
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf