Information security management practices: study of the influencing factors in a brazilian air force institution

Detalhes bibliográficos
Autor(a) principal: Ferreira, Rogério dos Santos
Data de Publicação: 2018
Outros Autores: Frogeri, Rodrigo Franklin, Coelho, Alessandra Brum, Piurcosky, Fabrício Pelloso
Tipo de documento: Artigo
Idioma: eng
Título da fonte: Journal of Information Systems and Technology Management (Online)
Texto Completo: https://www.revistas.usp.br/jistem/article/view/160841
Resumo: This article aims at analyzing the factors which influence the staff of the Brazilian Air Force Information Technology Board – DTI in relation to the understanding of the application of the Information Security Management practices. This attempt was based on the hypothetical-deductive method and, as to its objective, it was descriptive in nature. As to the approach of the research problem, it was quantitative in nature. In order to achieve the proposed objective, an adaptation of the Theoretical Technology Acceptance Model – TAM, which allowed the analysis of the relation between sociodemographic profile, perceived ease of use, perceived usefulness, attitude and behavior of the users, and the level of understanding of the Information Security practices. The survey was conducted with 59 military servants and civilians which are part of the Brazilian Air Force Information Technology Board, to whom a questionnaire was applied, submitted and approved by the Committee of Ethics in Research (CAAE: 62636016.7.0000.5111), which was based on the precepts of ISO/IEC 27001 (2013) and 27002, which deal, respectively, with the Information Security Management system and with the code of practice for Information Security controls. Once the data were gathered, they were tabulated and statistically analyzed, which enabled the demonstration of the influence of sociodemographic and behavioral factors and of the precepts of the TAM in the perception of the Information Security practices by the DTI staff.
id USP-33_e27df6e96ff138e7ee65e0f86916c4ba
oai_identifier_str oai:revistas.usp.br:article/160841
network_acronym_str USP-33
network_name_str Journal of Information Systems and Technology Management (Online)
repository_id_str
spelling Information security management practices: study of the influencing factors in a brazilian air force institutionInformation SecurityManagementISO/IEC 27001ISO/IEC 27002Technology Acceptance Model – TAMBrazilian Air Force Information Technology BoardThis article aims at analyzing the factors which influence the staff of the Brazilian Air Force Information Technology Board – DTI in relation to the understanding of the application of the Information Security Management practices. This attempt was based on the hypothetical-deductive method and, as to its objective, it was descriptive in nature. As to the approach of the research problem, it was quantitative in nature. In order to achieve the proposed objective, an adaptation of the Theoretical Technology Acceptance Model – TAM, which allowed the analysis of the relation between sociodemographic profile, perceived ease of use, perceived usefulness, attitude and behavior of the users, and the level of understanding of the Information Security practices. The survey was conducted with 59 military servants and civilians which are part of the Brazilian Air Force Information Technology Board, to whom a questionnaire was applied, submitted and approved by the Committee of Ethics in Research (CAAE: 62636016.7.0000.5111), which was based on the precepts of ISO/IEC 27001 (2013) and 27002, which deal, respectively, with the Information Security Management system and with the code of practice for Information Security controls. Once the data were gathered, they were tabulated and statistically analyzed, which enabled the demonstration of the influence of sociodemographic and behavioral factors and of the precepts of the TAM in the perception of the Information Security practices by the DTI staff.TECSI - FEA - Universidade de São Paulo. Faculdade de Economia, Administração, Contabilidade e Atuária2018-06-07info:eu-repo/semantics/articleinfo:eu-repo/semantics/publishedVersionapplication/pdfhttps://www.revistas.usp.br/jistem/article/view/16084110.4301/S1807-1775201815005Journal of Information Systems and Technology Management; v. 15 (2018); e2018005Journal of Information Systems and Technology Management; Vol. 15 (2018); e2018005Journal of Information Systems and Technology Management; Vol. 15 (2018); e20180051807-1775reponame:Journal of Information Systems and Technology Management (Online)instname:Universidade de São Paulo (USP)instacron:USPenghttps://www.revistas.usp.br/jistem/article/view/160841/155000Copyright (c) 2018 JISTEM - Journal of Information Systems and Technology Management (Online)info:eu-repo/semantics/openAccessFerreira, Rogério dos SantosFrogeri, Rodrigo FranklinCoelho, Alessandra BrumPiurcosky, Fabrício Pelloso2019-08-08T14:32:40Zoai:revistas.usp.br:article/160841Revistahttp://www.scielo.br/scielo.php?script=sci_serial&pid=1807-1775&lng=pt&nrm=isoPUBhttps://old.scielo.br/oai/scielo-oai.php||jistem@usp.br1807-17751807-1775opendoar:2019-08-08T14:32:40Journal of Information Systems and Technology Management (Online) - Universidade de São Paulo (USP)false
dc.title.none.fl_str_mv Information security management practices: study of the influencing factors in a brazilian air force institution
title Information security management practices: study of the influencing factors in a brazilian air force institution
spellingShingle Information security management practices: study of the influencing factors in a brazilian air force institution
Ferreira, Rogério dos Santos
Information Security
Management
ISO/IEC 27001
ISO/IEC 27002
Technology Acceptance Model – TAM
Brazilian Air Force Information Technology Board
title_short Information security management practices: study of the influencing factors in a brazilian air force institution
title_full Information security management practices: study of the influencing factors in a brazilian air force institution
title_fullStr Information security management practices: study of the influencing factors in a brazilian air force institution
title_full_unstemmed Information security management practices: study of the influencing factors in a brazilian air force institution
title_sort Information security management practices: study of the influencing factors in a brazilian air force institution
author Ferreira, Rogério dos Santos
author_facet Ferreira, Rogério dos Santos
Frogeri, Rodrigo Franklin
Coelho, Alessandra Brum
Piurcosky, Fabrício Pelloso
author_role author
author2 Frogeri, Rodrigo Franklin
Coelho, Alessandra Brum
Piurcosky, Fabrício Pelloso
author2_role author
author
author
dc.contributor.author.fl_str_mv Ferreira, Rogério dos Santos
Frogeri, Rodrigo Franklin
Coelho, Alessandra Brum
Piurcosky, Fabrício Pelloso
dc.subject.por.fl_str_mv Information Security
Management
ISO/IEC 27001
ISO/IEC 27002
Technology Acceptance Model – TAM
Brazilian Air Force Information Technology Board
topic Information Security
Management
ISO/IEC 27001
ISO/IEC 27002
Technology Acceptance Model – TAM
Brazilian Air Force Information Technology Board
description This article aims at analyzing the factors which influence the staff of the Brazilian Air Force Information Technology Board – DTI in relation to the understanding of the application of the Information Security Management practices. This attempt was based on the hypothetical-deductive method and, as to its objective, it was descriptive in nature. As to the approach of the research problem, it was quantitative in nature. In order to achieve the proposed objective, an adaptation of the Theoretical Technology Acceptance Model – TAM, which allowed the analysis of the relation between sociodemographic profile, perceived ease of use, perceived usefulness, attitude and behavior of the users, and the level of understanding of the Information Security practices. The survey was conducted with 59 military servants and civilians which are part of the Brazilian Air Force Information Technology Board, to whom a questionnaire was applied, submitted and approved by the Committee of Ethics in Research (CAAE: 62636016.7.0000.5111), which was based on the precepts of ISO/IEC 27001 (2013) and 27002, which deal, respectively, with the Information Security Management system and with the code of practice for Information Security controls. Once the data were gathered, they were tabulated and statistically analyzed, which enabled the demonstration of the influence of sociodemographic and behavioral factors and of the precepts of the TAM in the perception of the Information Security practices by the DTI staff.
publishDate 2018
dc.date.none.fl_str_mv 2018-06-07
dc.type.driver.fl_str_mv info:eu-repo/semantics/article
info:eu-repo/semantics/publishedVersion
format article
status_str publishedVersion
dc.identifier.uri.fl_str_mv https://www.revistas.usp.br/jistem/article/view/160841
10.4301/S1807-1775201815005
url https://www.revistas.usp.br/jistem/article/view/160841
identifier_str_mv 10.4301/S1807-1775201815005
dc.language.iso.fl_str_mv eng
language eng
dc.relation.none.fl_str_mv https://www.revistas.usp.br/jistem/article/view/160841/155000
dc.rights.driver.fl_str_mv Copyright (c) 2018 JISTEM - Journal of Information Systems and Technology Management (Online)
info:eu-repo/semantics/openAccess
rights_invalid_str_mv Copyright (c) 2018 JISTEM - Journal of Information Systems and Technology Management (Online)
eu_rights_str_mv openAccess
dc.format.none.fl_str_mv application/pdf
dc.publisher.none.fl_str_mv TECSI - FEA - Universidade de São Paulo. Faculdade de Economia, Administração, Contabilidade e Atuária
publisher.none.fl_str_mv TECSI - FEA - Universidade de São Paulo. Faculdade de Economia, Administração, Contabilidade e Atuária
dc.source.none.fl_str_mv Journal of Information Systems and Technology Management; v. 15 (2018); e2018005
Journal of Information Systems and Technology Management; Vol. 15 (2018); e2018005
Journal of Information Systems and Technology Management; Vol. 15 (2018); e2018005
1807-1775
reponame:Journal of Information Systems and Technology Management (Online)
instname:Universidade de São Paulo (USP)
instacron:USP
instname_str Universidade de São Paulo (USP)
instacron_str USP
institution USP
reponame_str Journal of Information Systems and Technology Management (Online)
collection Journal of Information Systems and Technology Management (Online)
repository.name.fl_str_mv Journal of Information Systems and Technology Management (Online) - Universidade de São Paulo (USP)
repository.mail.fl_str_mv ||jistem@usp.br
_version_ 1809284037205819392

Registros relacionados