INFORMATION SECURITY CONTROLS AS DETERMINANT OF CONTINUITY OF INFORMATION SYSTEM WORK

INFORMATION SECURITY CONTROLS AS DETERMINANT OF CONTINUITY OF INFORMATION SYSTEM WORK

Show other versions (1)

The purpose of this research is to identify the influence of information security controls on the continuity of information system work. The fact that the companies operate in highly turbulent business environment with severe threats to information security, leads to the need to examine this issue...

Full description

Saved in:
Bibliographic Details
Main Authors: Edin Osmanbegović, Nedžad Pirić, Mirza Suljić
Format: Article
Language:English
Published: Faculty of Economics, University of Tuzla 2017-11-01
Series:Economic Review
Subjects:
information security
aspects and procedures of information security
information system continuity
protection of companies’ information resources
Online Access:http://er.ef.untz.ba/index.php/er/article/view/99
Tags: Add Tag
No Tags, Be the first to tag this record!
Description
Summary:The purpose of this research is to identify the influence of information security controls on the continuity of information system work. The fact that the companies operate in highly turbulent business environment with severe threats to information security, leads to the need to examine this issue in detail. In their research, the authors have presented the indicators of impact of information security controls on the continuity of information system work. From the point of information security policy prescription, out of the total number of the surveyed companies, 80% do not have the required policy or a document showing the management commitment (attitude) to the introduction of information security measures. About 84% of the surveyed companies have information system access control. About 32% of these companies have the controls at the level of computer network, 22% of them have the control at the operating system level, while 38% have the control at the software application level. From the aspect of information system physical security, the surveyed companies (84%) indicated that they devote a considerable attention to this segment of information security. When analysing the existence of prescribed procedures for information system incident management, the study determined that only 20% of the companies have implemented these procedures. The prescribed procedures for monitoring information system continuity in the surveyed companies are at a very low level, as most of the companies (84%) do not have a proper procedure.
ISSN:1512-8962
2303-680X

Similar Items