Abstract
The competitiveness of the global marketplace means that organizations are relying increasingly on information to stay ahead. This information needs to be protected at all costs and the users play a huge role in the protection of this vital asset. All employees need to be educated in the procedures and controls that will secure the organization’s information and the most direct way to do this is by implementing a formal information security awareness program that addresses all aspects of information security awareness and caters for all types of users in the organization.
The original version of this chapter was revised: The copyright line was incorrect. This has been corrected. The Erratum to this chapter is available at DOI: 10.1007/978-0-387-35586-3_46
Chapter PDF
Similar content being viewed by others
References
Barnard, L. & von Solms, R. (1998). Evaluation and Certification of Information Security against BS 7799. Information Management and Computer Security 6(2), pp.72–77. MCB University Press.
British Standards Institution. (1999). Code of Practice for Information Security Management. DISC PD 0007. London.
C-cubed communications. (1998, November 10). Information Security Risk Continue to Escalate [online]. [Cited March 17, 2001] Available from Internet URL http://196.36.119.109/sections/computing/news/default.asp.
Guidelines to the Management of Information Technology Security (GMITS). (1996). Part 1 & 2, ISO/IEC, JTC 1, SC27, WG1.
Information Security Policy World (2001). The Information Security Policies / Computer Security Policies Directory [online] [cited August 28, 2001] Available for Internet URL http://www.information-security-policies-and-standards.com/
Khan, B. (1999, November 10). SA Information Security Awareness at a low [online]. [Cited March 15, 2001] Available from Internet URL http://196.36.119.109/sections/news/default.asp .
Munyiri, E. & von Solms, R. (1998). The Development of an Information Security Policy Satisfying the BS 7799 Standard. In von Solms, R.(Ed.). Information Technology on the Move. pp.10–25. Port Elizabeth: Port Elizabeth Technikon.
Sy, P. (2001). Information Security Management System (ISMS) and BS7799 Standards [online]. [Cited March 22, 2001] Available from Internet URL http://www.psbcert.dir.com.sg/new/isms.html.
Thomson M. & Von Solms, R (1998). An Effective Information Security Awareness and Training Program. MTech thesis. Port Elizabeth: Port Elizabeth Technikon.
Thomson, M. & von Solms, R. (1998). Information Security Awareness: educating your users effectively. Information Management and Computer Security 6(4), pp.167–173. MCB University Press.
Schweitzer, J.A. (1987). How Changes in Computing Practices Affect Security. Computer Security — Readings from ‘Security Management’ Magazine, pp.167–180. Stoneham : Butterworth Publishers.
TSEC. (2000). InformationWeek Research Study [online] [cited August 24, 2001] Available from Internet URL http://www.itsecurity.com/tecnews/jul2000/jul102.htm
Von Solms, R. (1996). Information Security Management: The Second Generation. Computers & Security 15(4), pp.281–288. Elsevier Science Ltd.
Wood C.C. (1994). Information Security Policies Made Easy. Ohio:Bookmasters.
Wood C.C. (1996). Information owners, custodians and users. Information Management and Computer Security 4(4), pp. 34–35. MCB University Press.
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2002 IFIP International Federation for Information Processing
About this chapter
Cite this chapter
Vroom, C., von Solms, R. (2002). A Practical Approach to Information Security Awareness in the Organization. In: Ghonaimy, M.A., El-Hadidi, M.T., Aslan, H.K. (eds) Security in the Information Society. IFIP Advances in Information and Communication Technology, vol 86. Springer, Boston, MA. https://doi.org/10.1007/978-0-387-35586-3_2
Download citation
DOI: https://doi.org/10.1007/978-0-387-35586-3_2
Publisher Name: Springer, Boston, MA
Print ISBN: 978-1-4757-1026-7
Online ISBN: 978-0-387-35586-3
eBook Packages: Springer Book Archive