To read this content please select one of the options below:

On security preparations against possible IS threats across industries

Arthur Jung‐Ting Chang (Department of Information Management, Chin Min Institute of Technology, Miaoli, Taiwan, Republic of China)
Quey‐Jen Yeh (Department of Business Administration, National Cheng Kung University, Tainan, Taiwan, Republic of China)

Information Management & Computer Security

ISSN: 0968-5227

Article publication date: 1 August 2006

2440

Abstract

Purpose

Modernized information systems (IS) have brought enterprises not only enormous benefits, but also linked information threats. Most enterprises solve their IS security‐related problems using technical means alone, and focus on technical rather than managerial controls, which may imply potential crises. This study examines whether the security preparation of firms matches the severity of IS threats they perceive in developing countries, especially in issues concerning “people” and “administration”. Additionally, this study discusses appropriate threat mitigation strategies for the four sectors as well.

Design/methodology/approach

Using an empirical study, this study explores the past and current concerns of IS threats of firms in different industries, and the countermeasures prepared by them to protect themselves from such threats. The empirical data was provided by 109 Taiwanese enterprises from four sectors.

Findings

The analytical results revealed the differences in both the IS threats concerned and the security scopes prepared among the four sectors. Moreover, the preparation scopes were not commensurate with the perceived severity of threats. All four industries rated the network as posing the strongest threat, following regulation and personnel issues, while among the countermeasures in use, these three issues have larger application deficiencies.

Originality/value

This study concludes that the firms do not well prepare themselves against IS threats entailed to non‐technical administration issues and discusses appropriate threat mitigation strategies for the four sectors. Specifically, firms should be aware of IS threats to their business and prepare suitable security protections.

Keywords

Citation

Jung‐Ting Chang, A. and Yeh, Q. (2006), "On security preparations against possible IS threats across industries", Information Management & Computer Security, Vol. 14 No. 4, pp. 343-360. https://doi.org/10.1108/09685220610690817

Publisher

:

Emerald Group Publishing Limited

Copyright © 2006, Emerald Group Publishing Limited

Related articles