![]() Clustering people is helpful to achieve it. Strategic Planning: to come up a better awareness-program, we need to set clear targets.Pre-Evaluation: to identify the awareness of information security within employees and to analysis current security policy.In 'Information Security Culture from Analysis to Change', authors commented, 'It's a never ending process, a cycle of evaluation and change or maintenance.' To manage the information security culture, five steps should be taken: Pre-evaluation, strategic planning, operative planning, implementation, and post-evaluation. Research shows Information security culture needs to be improved continuously. Andersson and Reimers (2014) found that employees often do not see themselves as part of the organization Information Security 'effort' and often take actions that ignore organizational information security best interests. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |