• Title/Summary/Keyword: Security Employees

Search Result 319, Processing Time 0.031 seconds

A Study on Mitigation of Information Security Related Work Stress (정보보안 관련 업무 스트레스 완화에 대한 연구)

  • Hwang, Inho
    • Journal of Convergence for Information Technology
    • /
    • v.10 no.9
    • /
    • pp.123-135
    • /
    • 2020
  • Recently organizations are implementing strict security policies and technologies to minimize security incidents. However, strict information security can cause work stress of employees and can make it difficult to achieve security goals. The purpose of this study is to present the preconditions for mitigating the negative impact of security-related work stress. We conducted a questionnaire survey of employees working in the financial industry and secured a total of 266 samples. The test of the research hypothesis was carried out by structural equation modeling. As a result, work stress had a negative effect on compliance intention, and value congruence reduced work stress. Also, security feedback had a moderating effect on the relationship between research factors. The results have theoretical and practical implications for mitigating work stress of employees.

Violations of Information Security Policy in a Financial Firm: The Difference between the Own Employees and Outsourced Contractors (금융회사의 정보보안정책 위반요인에 관한 연구: 내부직원과 외주직원의 차이)

  • Jeong-Ha Lee;Sang-Yong Tom Lee
    • Information Systems Review
    • /
    • v.18 no.4
    • /
    • pp.17-42
    • /
    • 2016
  • Information security incidents caused by authorized insiders are increasing in financial firms, and this increase is particularly increased by outsourced contractors. With the increase in outsourcing in financial firms, outsourced contractors having authorized right has become a threat and could violate an organization's information security policy. This study aims to analyze the differences between own employees and outsourced contractors and to determine the factors affecting the violation of information security policy to mitigate information security incidents. This study examines the factors driving employees to violate information security policy in financial firms based on the theory of planned behavior, general deterrence theory, and information security awareness, and the moderating effects of employee type between own employees and outsourced contractors. We used 363 samples that were collected through both online and offline surveys and conducted partial least square-structural equation modeling and multiple group analysis to determine the differences between own employees (246 samples, 68%) and outsourced contractors (117 samples, 32%). We found that the perceived sanction and information security awareness support the information security policy violation attitude and subjective norm, and the perceived sanction does not support the information security policy behavior control. The moderating effects of employee type in the research model were also supported. According to the t-test result between own employees and outsourced contractors, outsourced contractors' behavior control supported information security violation intention but not subject norms. The academic implications of this study is expected to be the basis for future research on outsourced contractors' violation of information security policy and a guide to develop information security awareness programs for outsourced contractors to control these incidents. Financial firms need to develop an information security awareness program for outsourced contractors to increase the knowledge and understanding of information security policy. Moreover, this program is effective for outsourced contractors.

The Effect on Leadership and Job Characteristic, Job stress, Commitment, turnover in security industry Employees (경호산업 종사자들의 리더십과 직무특성, 직무스트레스, 몰입이 이직에 미치는 영향)

  • Kwon, Bong-An
    • Korean Security Journal
    • /
    • no.20
    • /
    • pp.19-43
    • /
    • 2009
  • The purpose of this study was to examine the factors which influence the attitude of employees in security firms in Korea that ultimately lead to their turnover. Several variables which are seen as influential in formation of employees' attitudes about their organizations are leadership and job characteristics. In commitment and job stress were seen as two major variables which lead to the formation of their turnover, commitment was seen as positive influential variable and job stress a negatively influencing variable in employees' attitudes about their respective organizations. Survey method using questionnaires were utilized on employees of medium to large security firms in Seoul and Kyonggi province of Korea where 30 or more were employed. Sample for this research were field operators and, for leadership determination, their division chiefs were chosen. For the purpose of this research, several key hypotheses derived and developed from existing works related to this research topic were tested using multiple regression analysis utilizing SPSS 11.0. and Lisrel 8W The research findings are an follows: 1. leadership behavior of the superiors greatly influence, in most positive way, the employees' commitment. 2. Those employees who view their high organization commitment. shown to possess lower turnover. 3. Autonomy in their job characteristics to positively influence one's job stress 4. Higher the job stress the higher and positively influence one's turnover.

  • PDF

Why Security Awareness Education is not Effective? (정보보안 인식 교육의 효과에 대한 연구)

  • Yim, Myung-Seong
    • Journal of Digital Convergence
    • /
    • v.12 no.2
    • /
    • pp.27-37
    • /
    • 2014
  • While organizations are making a considerable effort to leverage formal and informal control mechanisms (e.g., policies, procedures, organizational culture) to improve security, their impact and effectiveness is under scrutiny as employees seldom comply with information security procedures. The best way to ensure the viability of a security policy is to make sure users understand it and accept necessary precautions. From an organization's perspective, a lack of security knowledge and awareness on the part of employees is a major problem. However, previous studies suggest that effect of security awareness education is inconsistent. Thus, this study is to find the answer why security awareness education is not effective. Conclusions and implications are discussed.

A Study on Threat Containment through VDI for Security Management of Partner Companies Operating at Industrial Control System Facility

  • Lee, Sangdo;Huh, Jun-Ho
    • Proceedings of the Korea Information Processing Society Conference
    • /
    • 2019.10a
    • /
    • pp.491-494
    • /
    • 2019
  • The results from the analysis of recent security breach cases of industrial control systems revealed that most of them were caused by the employees of a partner company who had been managing the control system. For this reason, the majority of the current company security management systems have been developed focusing on their performances. Despite such effort, many hacking attempts against a major company, public institution or financial institution are still attempted by the partner company or outsourced employees. Thus, the institutions or organizations that manage Industrial Control Systems (ICSs) associated with major national infrastructures involving traffic, water resources, energy, etc. are putting emphasis on their security management as the role of those partners is increasingly becoming important as outsourcing security task has become a common practice. However, in reality, it is also a fact that this is the point where security is most vulnerable and various security management plans have been continuously studied and proposed. A system that enhances the security level of a partner company with a Virtual Desktop Infrastructure (VDI) has been developed in this study through research on the past performances of partner companies stationed at various types of industrial control infrastructures and its performance outcomes were statistically compiled to propose an appropriate model for the current ICSs by comparing vulnerabilities, measures taken and their results before and after adopting the VDI.

The Mechanism of Labor Motivation as a Determinant of Economic Security of Enterprises in Competitive Conditions

  • Lagodiienko, Volodymyr;Samoilenko, Viktoria;Pasko, Maryna;Ovod, Larysa;Matsulevych, Yevgeniy
    • International Journal of Computer Science & Network Security
    • /
    • v.22 no.2
    • /
    • pp.385-393
    • /
    • 2022
  • In the study of the mechanism of labor motivation as a determinant of economic security of the enterprise in competitive conditions, it was found that motivation is determinant in creating the conditions for production and ensuring the active functioning of the enterprise. It is substantiated that the motivational mechanism is the presence of a system of levers, incentives, measures and other elements for economic and administrative incentives for employees, which are used for incentives to work, increase productivity and safety, and more. The motivational mechanism plays an important role in ensuring the economic security of the enterprise and at the same time is a lever to increase competitiveness in the market. The functions of the mechanism of labor motivation are singled out, among which: explanatory-substantiating, regulative, communicative, socialization, regulating. The stages of occurrence of the motive for the employee are classified. The interrelation of motives and incentives in the mechanism of labor motivation as determinants of economic security of the enterprise in competitive conditions is proved. It is proved that the mechanism of labor motivation as a determinant of economic security of the enterprise in competitive conditions should be aimed at: assistance in forming and achieving goals and objectives of the enterprise and achieving balance and equilibrium of economic goals and social responsibility of the enterprise; ensuring close cooperation between management and employees of the enterprise; focus on building a flexible mechanism; transition to a democratic style of governance and involvement of employees in decision-making.

Effect on the Job Satisfaction Influenced by Social Capital of Private Security Industry Employees - Focuing on the Role of Mediation for Job Characteristics - (민간경비업체 종사자의 사회자본이 직무만족에 미치는 영향 - 직무특성의 매개효과를 중심으로 -)

  • Oh, Tae-Kon
    • Korean Security Journal
    • /
    • no.37
    • /
    • pp.165-195
    • /
    • 2013
  • Today, the importance of social capital is emphasized in modern industry as the third capital. Social capital involves "trust and norms for members" and "social network" related to effective human resource management, which is being investigated actively by many researchers. However, It is difficult to see the report on the social capital of private security industry employees. So, this report suggests effective management practices of employees through the empirical analysis on the relationship between social capital and job satisfaction with a focus on the role of mediation for job characteristics. For the most, this research through analysis on relationship between social capital and job satisfaction shows that of the components of social capital, trust and networks influence effect on job satisfaction significantly. Secondly, as result of analysis on role of mediation for job satisfaction, importance of job involved in job characteristics has an effect of mediation. This result of empirical analysis menas that the pressure of private security industry employees is reduced and cooperation which is based on social capital is need through members' trust and social network. Therefore, the strategy of management about private security industry employees should be considered for both activation of social capital and maintenance.

  • PDF

An Investigation of the Factors that Influence the Compliance to Information Security Policy: From Risk Compensation Theory (정보보안 정책 준수에 영향을 미치는 요인: 위험보상이론 관점에서)

  • Yim, Myung-Seong;Han, Kun Hee
    • Journal of Digital Convergence
    • /
    • v.11 no.10
    • /
    • pp.153-168
    • /
    • 2013
  • Information security has been a major concern in organizations. The longstanding question of how to improve employees security behaviors and reduce human errors remains unanswered and requires further exploration in the information security domain. To do this, we propose a risk compensation theory-based model and examine the model. Research results shows that the relationships between information security countermeasures and information security compliance intention of employees are moderated by system vulnerability. However, the finding is contrary to the previously held risk compensation assumption and deserve further study. In addition, system quality does not play a moderator role in the relationship. Conclusions and implications are discussed.

Decision Support System to Detect Unauthorized Access in Smart Work Environment (스마트워크 환경에서 이상접속탐지를 위한 의사결정지원 시스템 연구)

  • Lee, Jae-Ho;Lee, Dong-Hoon;Kim, Huy-Kang
    • Journal of the Korea Institute of Information Security & Cryptology
    • /
    • v.22 no.4
    • /
    • pp.797-808
    • /
    • 2012
  • In smart work environment, a company provides employees a flexible work environment for tele-working using mobile phone or portable devices. On the other hand, such environment are exposed to the risks which the attacker can intrude into computer systems or leak personal information of smart-workers' and gain a company's sensitive information. To reduce these risks, the security administrator needs to analyze the usage patterns of employees and detect abnormal behaviors by monitoring VPN(Virtual Private Network) access log. This paper proposes a decision support system that can notify the status by using visualization and similarity measure through clustering analysis. On average, 88.7% of abnormal event can be detected by this proposed method. With this proposed system, the security administrator can detect abnormal behaviors of the employees and prevent account theft.

A Study on Emotional Labor of Casino Employees : Security Team and also Employees who Care Customer Closer (카지노 보안 및 고객접점 의전 종사자의 감정노동에 관한 연구)

  • Heo, Tae gu
    • Korean Security Journal
    • /
    • no.57
    • /
    • pp.111-135
    • /
    • 2018
  • Domestic casino companies strongly demand their employees to provide high quality customer services for improving customer's satisfaction and to minimize customer's complain to achieve organizational objective. This seriously influences the job stress, job satisfaction and turnover of employees. However, ongoing management is necessary for job satisfaction and turnover intention of employees because which are related to organizational effectiveness and factors able to maximize the profit. In this study, we examined the influence and causal relationship of job stress from emotional labor of employees on job satisfaction and turnover intention of employees. As a result, job stress had a full mediating effect in the relationship between emotional labor, job satisfaction and turnover intention. It was confirmed that emotional labor of casino employees could cause job stress and further influence job satisfaction and turnover intention. In order to reduce job stress and improve job satisfaction, we propose the improvement of overall human management structure and company environment of casino companies. Emotional education such as emotional regulation ability, empathy, and interpersonal skills should be strengthened to reduce job stress from emotional labor, and the self-esteem program will be helpful to casino employees to maintain the emotional positiveness and maximize their working abilities.