Information systems security (ISS) is crucial in all and each one of the services provided by organizations. Among security measures, policies assume a central role in literature. A lot has been said about this issue over the last years, however, the analysis of some studies conducted by different authors show that this ISS measure has not yet been institutionalized in most companies. By approaching aspects intrinsically related to ISS policies, this paper aims to contribute suggestions of some actions which might be taken to formulate and implement an ISS policy. Methodologically, the study involved interviewing the officials in charge of information systems in 21 Small and Medium Sized Enter prises (SMEs) in Portugal. The results are discussed in the light of literature and future works are identified with the aim of enabling the implementation of ISS.
CITATION STYLE
Lopes, I. M., Pereira, J. P., & Oliveira, P. (2017). Definition of information systems security policies. In Advances in Intelligent Systems and Computing (Vol. 571, pp. 225–234). Springer Verlag. https://doi.org/10.1007/978-3-319-56541-5_23
Mendeley helps you to discover research relevant for your work.