Ensuring Effective Information Security Management Information Classification and Access Control Practices
Journal Title: International Journal of Trend in Scientific Research and Development - Year 2020, Vol 5, Issue 1
Abstract
This study is based on information security management in financial institutions from the perspective of information classification and access control. As objectives, the study set out to assess information classification practices in microfinance institutions and their effect on overall information security management, and to examine access control in microfinance institutions and how it impacts information security management. The study made use of the Information Security Theory by Horne, Ahmad and Maynard, and a sequential exploratory mixed method survey research design. As data collection instruments, a questionnaire and an interview guide were used, with validity and reliability guaranteed by subject experts, ISO IEC checklists, and Kuder Richardson formula 20 which realised a score of 0.81. Of the 30 managers and information security officers who participated in the study, a response rate of 100 was registered. To analyse data, descriptive statistics and thematic analysis were used. The findings portray loopholes in information classification and access control and thus in the information security management programme of participating institutions. Some recommendations put forth are the need to adopt information classification schedules with distinguished levels of sensitivity, drafting of access control policies, signing of non disclosure agreements and introduction of information security officers to ensure implementation and follow up. Rosemary M. Shafack | Awiye Sharon Serkwem "Ensuring Effective Information Security Management: Information Classification and Access Control Practices" Published in International Journal of Trend in Scientific Research and Development (ijtsrd), ISSN: 2456-6470, Volume-5 | Issue-1 , December 2020, URL: https://www.ijtsrd.com/papers/ijtsrd38122.pdf Paper URL : https://www.ijtsrd.com/management/other/38122/ensuring-effective-information-security-management-information-classification-and-access-control-practices/rosemary-m-shafack
Authors and Affiliations
Rosemary M. Shafack | Awiye Sharon Serkwem
Keywords
Related Articles
- EP ID EP692308
- DOI -
- Views 109
- Downloads 0
Protein Energy Malnutrition in CKD Patients
Elevated protein catabolism and protein malnutrition are common in patients with chronic kidney disease (CKD) and end-stage renal disease (ESRD). The underlying etiology includes, but is not limited to, metabolic acidosi...
An Empirical Assessment of Capital Asset Pricing Model with Reference to National Stock Exchange
This study concentrates on empirical assessment of Capital Asset Pricing Model CAPM on the National Stock Exchange NSE . CAPM assists to determine a well diversified portfolio. The main objective of this research paper i...
Design for Harvesting and Treatment of Rainwater in Naval, Biliran
The study takes advantage of rainwater, a naturally processed water. Developing a design for an affordable, less chemically oriented method that would help many people gain access to the water they need easily. The desig...
Production of Eco-Friendly Bricks from Copper Mine Tailings through Geopolymerization in India
This paper studies the feasibility of utilizing copper mine tailings for production of eco friendly bricks based on the geopolymerization technology. The procedure for producing the bricks simply includes mixing the tail...
A Study on Rock units for Landslide Hazard between Yinmabin and Kalaw areas, Mandalay Region and Shan State South
The research area is situated along the Thazi Taunggyi road section and Thazi Shwenyaung railway section in western part of the Shan Plateau. It is one of the most socio economically important transportation routes in My...