Behavioral and policy issues in information systems security: The insider threat

European Journal of Information Systems

Volumn 18, Issue 2, 2009, Pages 101-105

  Warkentin, Merrill ^a   Willison, Robert ^a  

^a NONE

Author keywords

[No Author keywords available]

Indexed keywords

EID: 67650170305     PISSN: 0960085X     EISSN: 14769344     Source Type: Journal    
DOI: 10.1057/ejis.2009.12     Document Type: Review

References (18)

1. CULNAN M. (1987) Mapping the intellectual structure of MIS, 1980-1985: a co-citation analysis. MIS Quarterly 11(3), 341-353.
2. ERNST and YOUNG (2008) Moving beyond compliance: Ernst & Young's 2008 global information security survey. [WWW document] http://www.ey.com/Global/assets.nsf/International/TSRS-Global-Information- Security-Survey-2008/$file/TSRS-Global-Information-Security-Survey-2008. pdf (accessed 1 April 2009).
3. FARHOOMAND A.F. (1987) Scientific progress of management information systems. The DATA BASE for Advances in Information Systems 18(4), 48-56.
4. FARHOOMAND A.F. and DRURY D.H. (1999) A historiographical examination of information systems. Communications of the AIS 1, 1-27.
5. FORCHT K. (1994) Computer Security Management. Danvers: Boyd and Fraser.
6. IM G. and BASKERVILLE R. (2005) A longitudinal study of information systems threat categories: the enduring problem of human error. The DATA BASE for Advances in Information Systems 36(4), 68-79.
7. LOCH K.D., CARR H.H. and WARKENTIN M.E. (1992) Threats to information systems: today's reality, yesterday's understanding. MIS Quarterly 16(2), 173-186.
8. PARKER D. (1998) Fighting Computer Crime: A New Framework for Protecting Information. Wiley Computer Publishing, New York.
9. SIPONEN M., WILLISON R. and BASKERVILLE R. (2008) Power and practice in information systems security research. In Proceedings of the International Conference on Information Systems Paris, France, 14-17 December 2008.
10. STANTON J.M., STAM K.R., MASTRANGELO P. and JOLTON J. (2005) Analysis of end user security behaviors. Computers & Security 24(2), 124-133.
11. STRAUB D. and WELKE R. (1998) Coping with systems risk: Security planning models for management decision making. MIS Quarterly 22(4), 441-469.
12. VESSEY I., RAMESH V. and GLASS R.L. (2002) Research in information systems: an empirical study of diversity in the discipline and its journals. Journal of Management Information Systems 19(2), 129-174.
13. WARKENTIN M.E. (1995) Information system security and privacy. In Emerging Information Technologies, Advances in Telematics HANSoN J, Ed), Volume 2, pp. 57-77, Ablex Publishing, Norwood, NJ.
14. WARKENTIN M. and JOHNSTON A.C. (2008) IT governance and organizational development for security management. In Information Security Policies and Practices STRAUB D, GOODMAN Sand BASKERVILLE RL, Eds), pp. 46-68, M.E. Sharpe, Armonk, NY.
15. WARKENTIN M., DAVIS K. and BEKKERING E. (2004) Introducing the check-off password system (COPS): an advancement in user authentication methods and information security. Journal of Organizational and End User Computing 16(3), 41-58.
16. WILLISON R. (2006) Understanding the perpetration of employee computer crime in the organisational context. Information and Organization 16(4), 304-324.
17. WILLISON R. (2009) Motivations for employee computer crime: understanding and addressing workplace disgruntlement through the application of organisational justice. Working Paper No.1, Copenhagen Business School, Department of Informatics.
18. WILLISON R. and BACKHOUSE J. (2006) Opportunities for computer abuse: considering systems risk from the offender's perspective. European Journal of Information Systems 15(4), 403-414.