The role of security management on personal information

THE ROLE OF SECURITY MANAGEMENT ON PERSONAL INFORMATION

[Insert name of Author]

[Insert name of Institution]

[Insert date of submission]

ABSTRACT

Personal information security is usually considered a technical discipline with much attention being focused on s such as encryption , hacking , break-ins , and credit card theft . Security products such as anti-virus programs and personal firewall software , are now available for end-users to install on their computers to protect against threats endemic to networked computers . The behavioral aspects related to maintaining enterprise security have received little attention from researchers

and practitioners . Using Q-sort analysis , this thesis used students as end-users in a graduate business management security course to investigate issues affecting selection of personal firewall software in organizations . Based on the Q-sort analysis of end-users in relation to seven variables identified from review of the information security literature , three distinct group characteristics emerged . Similarities and differences between groups are investigated and implications of these results to IT managers , vendors of security software and researchers in information security area are discussed

ACKNOWLEDGEMENTS

I would like to thank my supervisor Professor ____________ for his great supervision and guidance throughout the duration of my thesis project

I would also like to thank all colleagues for their help and support

Finally , I wish to thank my family for their continued support throughout the thesis

TABLE OF CONTENTS Page

ABSTRACT .2

ACKNOWLEDGEMENTS .3

TABLE OF CONTENTS .4

LIST OF ACRONYMS .5

CHAPTER 1 - INTRODUCTION .6 Statement of the Problem .7 Research Question .8 Significance of the Research .9 Design and Methodology .10 - Q-Sort Analysis .12 Organization of the Study .14

CHAPTER 2- LITERATURE REVIEW .14

CHAPTER 3 - RESEARCH QUESTION FINDINGS .18

- Data Analysis .18

-Analysis of Results .26

-Limitations of the Study .29

Chapter 4- SUMMARY AND CONCLUSIONS Summary .30 Conclusion .31 Recommendation .33

REFERENCES .34

LIST OF ACRONYMS

Operational definition of these variables as it relates to the study are provided

Performance [PERF] : Refers to how well the software operates under various conditions (such as high traffic , types of data , port scans etc

Ease-of-use [EOU] : Refers to usability of the product (such as screen design and layout , access to features using tabs , buttons , etc

Updates [UPDTS] : Refers to product updates at regular intervals after product has been installed and used

Features [FEATR] : Refers to the number of program options and features available in software

Reports [RPORT] : Refers to Intrusion Reports and log s generated by the firewall software

Cost [COST] : Refers to price paid for the product (either as shrink wrapped package or as a download

Configuration [CONFIG] : Refers to setup and configuration after product has been installed

Support [SUPPRT] : Refers to availability of online help and technical support either by phone or e-mail

Installation [INSTLL] : Refers to initial installation of the product

Chapter 1 - INTRODUCTION

Security describes a process of protection from any harm . It also describes the countermeasures put in place by that process . Harm may indicate a loss of confidentiality , integrity , and availability Security management focuses on preventing harm resulting...