Organizational security management concerns in e-business
Kimuli, Barlon (2010)
Kimuli, Barlon
Turun ammattikorkeakoulu
2010
All rights reserved
Julkaisun pysyvä osoite on
https://urn.fi/URN:NBN:fi:amk-2010120917693
https://urn.fi/URN:NBN:fi:amk-2010120917693
Tiivistelmä
The evolution of internet has opened up many opportunities for businesses and organizations that are willing to take risks and embrace the e-revolution with a big part of transactions being made over the internet. In contrast, the Internet, which is the primary medium for conducting e-business is by design an open non-secure medium.
The objective of this thesis is to describe the importance of secure e-business transactions to organizations and their customers/business partners by analyzing the importance to which organizations attach to the information they transfer through the web.
The point of view of the thesis is mainly on organizational matters as attention is given to the security management of customers‟ and business information transferred during e-business transactions. A case study is done through questionnaire and interview to find out the organizations‟ awareness on information security issues based on the ISO/IEC 17799 standard.
As a result of the case study, several information security areas require more attention and therefore a need to revisit and emphasize information security in these organizations. Workers need to know the value of the information they handle during e-business transactions through teaching and organizing regular education programs to their staff about importance of information security.
The objective of this thesis is to describe the importance of secure e-business transactions to organizations and their customers/business partners by analyzing the importance to which organizations attach to the information they transfer through the web.
The point of view of the thesis is mainly on organizational matters as attention is given to the security management of customers‟ and business information transferred during e-business transactions. A case study is done through questionnaire and interview to find out the organizations‟ awareness on information security issues based on the ISO/IEC 17799 standard.
As a result of the case study, several information security areas require more attention and therefore a need to revisit and emphasize information security in these organizations. Workers need to know the value of the information they handle during e-business transactions through teaching and organizing regular education programs to their staff about importance of information security.