Ensuring Effective Information Security Management Information Classification and Access Control Practices
Journal Title: International Journal of Trend in Scientific Research and Development - Year 2020, Vol 5, Issue 1
Abstract
This study is based on information security management in financial institutions from the perspective of information classification and access control. As objectives, the study set out to assess information classification practices in microfinance institutions and their effect on overall information security management, and to examine access control in microfinance institutions and how it impacts information security management. The study made use of the Information Security Theory by Horne, Ahmad and Maynard, and a sequential exploratory mixed method survey research design. As data collection instruments, a questionnaire and an interview guide were used, with validity and reliability guaranteed by subject experts, ISO IEC checklists, and Kuder Richardson formula 20 which realised a score of 0.81. Of the 30 managers and information security officers who participated in the study, a response rate of 100 was registered. To analyse data, descriptive statistics and thematic analysis were used. The findings portray loopholes in information classification and access control and thus in the information security management programme of participating institutions. Some recommendations put forth are the need to adopt information classification schedules with distinguished levels of sensitivity, drafting of access control policies, signing of non disclosure agreements and introduction of information security officers to ensure implementation and follow up. Rosemary M. Shafack | Awiye Sharon Serkwem "Ensuring Effective Information Security Management: Information Classification and Access Control Practices" Published in International Journal of Trend in Scientific Research and Development (ijtsrd), ISSN: 2456-6470, Volume-5 | Issue-1 , December 2020, URL: https://www.ijtsrd.com/papers/ijtsrd38122.pdf Paper URL : https://www.ijtsrd.com/management/other/38122/ensuring-effective-information-security-management-information-classification-and-access-control-practices/rosemary-m-shafack
Authors and Affiliations
Rosemary M. Shafack | Awiye Sharon Serkwem
Keywords
Related Articles
- EP ID EP692308
- DOI -
- Views 103
- Downloads 0
Pongamia Bio Diesel '“ A Review
Day by day vehicle population in the world is increasing and usage of fossil fuel is also increasing. By using fossil fuel as a fuel in I C Engines will cause for health hazards, Global pollution, at the same time source...
A Study on Parental Attitude towards Girls’ Higher Education
In the present study the investigator attempted to find the attitude of parents of their girls’ higher education. 200 parents of girls were taken as a representative sample of the whole population. For selecting parents...
Privacy Protection and Intrusion Avoidance for Cloudlet-Based Medical Data Sharing
With the ubiquity of wearable gadgets, alongside the advancement of clouds and cloudlet innovation, there has been expanding need to give better medical care. The preparing chain of medical information mostly incorporate...
Experimental Research on Power Quality Improvement using Capacitor Bank for 500 kVA Three Phase Transformer
This research is to improve the power quality for 500kVA three phase transformer using capacitor bank at Technological University Mandalay . The main purpose of installing a capacitor bank is to compensate the reactive p...
Applied SPSS for Data Forecasting of Sale Quantity
SPSS is powerful to analyze business and marketing data. This paper intends to support business and marketing leaders the benefits of data forecasting with applied SPSS. It showed the sale quantity forecasting based on u...