Review of Information Security Policy based on Content Coverage and Online Presentation in Higher Education
Journal Title: International Journal of Advanced Computer Science & Applications - Year 2018, Vol 9, Issue 8
Abstract
Policies are high-level statements that are equal to organizational law and drive the decision-making process within the organization. Information security policy is not easy to develop unless organizations clearly identify the necessary steps required in the development process of an information security policy, particularly in institutions of higher education that largely utilize IT. An inappropriate development process or replication of security policy content from other organizations could fail in execution. The execution of a duplicated policy could fail to act in accordance with enforceable rules and regulations even though it is well developed. Hence, organizations need to develop appropriate policies in compliance with the organization regulatory requirements. This paper aims to reviews policies from selected universities with regards to ISO 27001:2013 minimum requirements as well as effective online presentation. The online presentation review covers the elements of aesthetics, navigation and content presentation. The information on the security policy document resides on the universities’ website.
Authors and Affiliations
Arash Ghazvini, Zarina Shukur, Zaihosnita Hood
Keywords
Related Articles
- EP ID EP376461
- DOI 10.14569/IJACSA.2018.090853
- Views 83
- Downloads 0
Comparative Study Between METEOR and BLEU Methods of MT: Arabic into English Translation as a Case Study
The Internet provides its users with a variety of services, and these services include free online machine translators, which translate free of charge between many of the world's languages such as Arabic, English, Chines...
A Proposed Quantitative Conceptual Model for the Assessment of Patient Clinical Outcome
The assessment of patient clinical outcome focuses on measuring various aspects of the patient’s health status after medical treatments and interventions. Patient clinical outcome assessment is a major concern in the cli...
A Tri-Level Industry-Focused Learning Approach for Software Engineering Management
Most engineering classes in higher education rely heavily on the traditional lecture format, despite the fact that a number of investigations have shown that lectures, even when given by good lecturers, have limited succ...
Definition of Tactile Interactions for a Multi-Criteria Selection in a Virtual World
Tablets, smartphones are becoming increasingly common and interfaces are predominantly tactile and often multi-touch. More and more schools are testing them with their pupils in the hope of bringing pedagogic benefits. W...
KASP: A Cognitive-Affective Methodology for Designing Serious Learning Games
Many research studies agree on the existence of a close link between emotion and cognition. Actually, much research has demonstrated that students with learning disabilities (LD) experience emotional distress related to...