Determining key factors in E-government information system security

Information Systems Management

Volumn 23, Issue 2, 2006, Pages 23-32

  Smith, Stephen ^a   Jamieson, Rodger ^a,b  

^a UNIVERSITY OF NEW SOUTH WALES   (Australia)

^b Securities Industry Research Centre of Asia Pacific   (Australia)

Author keywords

[No Author keywords available]

Indexed keywords

ACTIVE MANAGEMENT; BUSINESS CONTINUITY MANAGEMENT; E-GOVERNMENT; GOVERNMENT ORGANIZATIONS; INFORMATION SYSTEM SECURITY;

INFORMATION SYSTEMS;

GOVERNMENT DATA PROCESSING;

EID: 33645166418     PISSN: 10580530     EISSN: None     Source Type: Journal    
DOI: 10.1201/1078.10580530/45925.23.2.20060301/92671.4     Document Type: Article

References (22)

1. AS/NZS ISO/IEC 17799 (2001): "2001: Information technology - Code of practice for information security management", Standards Australia.
2. AS/NZS ISO/IEC 17799 (2004):"2001/Amdt 1-2004: Information technology - Code of practice for information security management", Standards Australia.
3. AS/NZS 7799 (2000): "2000 - Information technology - Code of practice for information security management", Standards Australia.
4. AS/NZS 7799.2 (2003): "2003 - Information Security Management - Part 2: Specification for Information Security Management Systems", Standards Australia.
5. Backhouse, J., & Dhillon, G., (2001): Current direction in IS security research: towards socio-organizational perspectives, Information Systems Journal, Vol. 11, pp. 127-153.
6. Baird,A. Jamieson, R. & Cerpa, N., (2002): Development of a framework for risks and Security in B2C E-Business, in Monteiro J L, Swatman P M C, Tavares L V, (eds), Towards the Knowledge Society: eCommerce, eBusiness and eGovemment, Kluwer Academic Publishers, pp. 399-414.
7. Bell, G. (2001): Information Security Risk and Assessment, 2001 UNC Charlotte Symposium on Information Security and Privacy, http://www.sis.uncc. edu/LIISP/slides01/Greg-Bell.pdf (Accessed 28 April 2005).
8. Blaikie, N., (2000): Designing Social Research, Cambridge, UK: Polity.
9. BS 7799-2 (2002): "2002: Information security management. Specification with guidance for use". Standards Australia.
10. Evans, N., (2003): "Information Security Guideline for NSW Government - Part 1 Information Security Risk Management", Office of Information and Communication Technology Sydney, http://www.oict.nsw.gov.au/pdf/ 4.4.16.IS1.pdf (Accessed 28 April 2005).
11. Frank, D., (2003): Policy would secure users, transactions, Federal Computer Week, Falls Church, Jan 27, Vol. 17, No. 2, p 10.
12. Gartner, (2002): Executive Presentation of Business Recovery Planning, New York State Forum, 02 Consulting, http://www.nysfirm.org/documents/ppt/bc_02/ 8-13GartnerBCP%20Pres.ppt (Accessed 28 April 2005).
13. Kraemer, K. L., and Dedrick, J., (2000): "European E-Commerce Report",Working Paper Center for Research on Information Technology and Organizations. University of California, Irvine, August 2000. http://www.crito.uci.edu/git/publications/pdf/european-e-commerce-report2.pdf (accessed 28 April 2005).
14. NSTISSC (1999): "National Security Telecommunications and Information Systems Security Committee (NSTISSC)" NSTISSI No. 4009 National Information Systems Security (INFOSEC) Glossary, January, p 4.
15. OICT, (2004): "Office of Information and Communications Technology - connect.NSW: an Internet Strategy for NSW". http://www.oict.nsw.gov.au/ content/1.3.1.Imp_Frame_Summary.asp (Accessed 28 April 2005).
16. Ross, K. L., (2004): "Foundationalism and Hermeneutics", http://www.friesian.com/hermenut.htm (Accessed 28 April 2005).
17. Schmidt, R., Lyytinen, K., Keil M., Cule P., (2001): Identifying software project risks: An international Delphi Study,Journal of Management Information Systems, Spring, Vol. 17, No. 4, pp. 5-36.
18. Scott, R.W., (2003): Planners need to plan for disaster, Accounting Today, New York, Jan 2003, pp. 18-20.
19. Spinellis, D., Kokolakis, S., Gritzalis, S., (1999): Security requirements, risks and recommendations for small enterprise and home-office environments, Information Management & Computer Security, Vol. 7, No. 3, pp. 121-128.
20. Straub, D. W., and Welke, R. J., (1998): Coping with systems risk: Security planning models for management decision-making, MIS Quarterly, Vol. 22, No. 4, December 1998, pp. 441-469.
21. Teo, H. H., Wei, K. K., and Benbasat, I., (2003): Predicting intention to adopt interorganizational linkages: An institutional perspective, Management Information Systems Quarterly, Vol. 27, No. 1, pp. 19-49.
22. Worthington, J., (2005): Flying blind, Risk Management, Issue 16,April, pp. 16-17.