Skip to main content
Conference ProceedingsOPEN ACCESS

Practice-based discourse analysis of infosec policies

IFIP Advances in Information and Communication Technology (2015) 455 297-310
DOI: 10.1007/978-3-319-18467-8_20
1Citations
Citations of this article
10Readers
Mendeley users who have this article in their library.

This article is free to access.

Abstract

Employees’ poor compliance with information security policies is a perennial problem for many organizations. Existing research shows that about half of all breaches caused by insiders are accidental, which means that one can question the usefulness of information security policies. In order to support the formulation of practical, from the employees’ perspective, information security policies, we propose eight tentative quality criteria. These criteria were developed using practice-based discourse analysis on three information security policy documents from a health care organisation.

Author supplied keywords

Cite

CITATION STYLE

APA

Karlsson, F., Goldkuhl, G., & Hedström, K. (2015). Practice-based discourse analysis of infosec policies. In IFIP Advances in Information and Communication Technology (Vol. 455, pp. 297–310). Springer New York LLC. https://doi.org/10.1007/978-3-319-18467-8_20

Register to see more suggestions

Mendeley helps you to discover research relevant for your work.

Already have an account?

Save time finding and organizing research with Mendeley

Sign up for free