• Convergence Security Journal
• /
• v.21 no.1
• /
• pp.101-106
• /
• 2021

To protect financial information, financial companies establish strategies and plans for information security, operate information security management systems, establish and operate information security systems, check vulnerabilities, and secure information. This paper aims to present an information security portal system for financial companies that can gain visibility into various information security activities being undertaken by financial companies and can be integrated and managed. The information security portal system systemizes the activities of the information security department, providing an integrated environment for information security activities to participate from CEOs to executives and employees, not just from the information security department. Through this, it can also be used as information security governance that can be used by top executives to reflect information security in corporate management.

• Korean Security Journal
• /
• no.50
• /
• pp.119-141
• /
• 2017

The purpose of this study is to analyze the longitudinal causal relationship between organizational commitment and job satisfaction, focusing on security related workers. For this purpose, the Korean Labor and Income panel data were classified into security employees. Data were analyzed using SPSS 18.0 and AMOS 20.0, and validity and reliability analysis were conducted before hypothesis testing. The results of the analysis show that organizational commitment at time t-1 has a positive effect on organizational commitment at time t, and that job satisfaction at time t-1 has a positive effect on job satisfaction at time t Respectively. The results of this study are as follows: 1) The organizational commitment has a significant effect on the job satisfaction. 2) The effect of job satisfaction on organizational commitment was also significant 3) The cross-lagged coefficients show that organizational commitment precedes job satisfaction and serves as a predictor

• Journal of Convergence Society for SMB
• /
• v.4 no.3
• /
• pp.7-13
• /
• 2014

In recent years, according to the increasing of information security compliance, information security management system's requirements is not a matter of choice but an essential problem. In this respect, this research have an invention to survey what it will affect employees in compliance with the privacy policy antecedents and how to apply this information for the future, and to suggest ways to improve the employees' information security policy compliance intentions. In this paper, To investigate the factors affecting the degree of information security policy compliance using the structural equation of least squares (PLS Partial Least Square) in the confumatory level (confirmatory), the factor analysis of the primary factor analysis and secondary last. The results is that almost of influencing factors affect to the compliance with information security policies directly, but not affect self-efficacy.

• KIPS Transactions on Computer and Communication Systems
• /
• v.4 no.2
• /
• pp.65-72
• /
• 2015

According to recent statistics published by the National Industrial Security Center, former and current employees are responsible for 80.4% of companies' technology leakages, and employees of cooperative firms are responsible for another 9.6%. This means that 90% of technology leakages are intentionally or mistakenly caused by insiders. In a recent incident, a credit card company leaked private information, and the person responsible was an employee of a cooperative firm. These types of incidents have an adverse effect not only on a company's assets but also on its reputation. Therefore, most institutions implement various security solutions to prevent information from being leaked. However, security solutions are difficult to analyze and distinguish from one another because their logs are independently operated and managed. A large number of logs are created from various security solutions. This thesis investigates how to prevent internal data leakage by setting up individual scenarios for each security solution, analyzing each scenario's logs, and applying a monitoring system to each scenario.

• Journal of the Korea Institute of Information Security & Cryptology
• /
• v.29 no.4
• /
• pp.847-857
• /
• 2019

Recently, various cyber threats such as Ransomware and APT attack are increasing by e-mail. The characteristic of such an attack is that it is important to take administrative measures by improving personal perception of security because it bypasses technological measures such as past pattern-based detection The purpose of this study is to investigate the human factors of employees who are vulnerable to spam mail attacks through field experiments and to establish future improvement plans. As a result of sending 7times spam mails to employees of a company and analyzing training report, It was confirmed that factors such as the number of training and the recipient 's gender, age, and workplace were related to the reading rate. Based on the results of this analysis, we suggest ways to improve the training and to improve the ability of each organization to carry out effective simulation training and improve the ability to respond to spam mail by awareness improvement.

• Journal of Distribution Science
• /
• v.20 no.6
• /
• pp.33-41
• /
• 2022

Purpose: This article presents the relationship among the perceived risk of the COVID-19 pandemic, burnout, job insecurity, and employees' job performance in Vietnam. Research design, data, and methodology: The dataset included 310 samples from Vietnamese employees through the internet (Gmail, Facebook, Google form). PLS-SEM is used on Smart-PLS software. Results: Research results show that the perceived risk of COVID-19 has a positive impact on job performance and burnout. At the same time, job insecurity positively impacts burnout and has a negative impact on job performance. The distribution of resources to many jobs (both working and worrying about losing jobs) will reduce job performance. Furthermore, the study shows that workers exposed to COVID-19 risks have higher job performance. At the same time, burnout is not a factor that reduces employees' job performance. Finally, the perceived risk of COVID-19 and job insecurity have nothing to do with each other (perceived risk of COVID-19 does not affect job insecurity). These are two factors that exist independently and in parallel. Conclusions: The authors also suggest some implications in theory and practice from these research results. The implications will reduce anxiety about risks due to COVID-19 and job security for employees.

• Korean Security Journal
• /
• no.57
• /
• pp.9-26
• /
• 2018

In order to reflect the Changes in this government's policy of making Temporary Position employees into the Public sector permanent, special security guards from Private Security firms in the National Critical Facilities protection Position are moving forward transformation to Permanent Position. Especially, the organization of the protection personnel of the National Government Buildings designated as the National Critical Facilities is comprised of various types of security personnels, protective officer, special security guards from Private Security firms, Private police guards, police officers and these types of security personnels protect for the Government Buildings. Recently, The Government Security planning division is discussing various types of transformation, Special Security guards are employed directly by the Government in order to convert them into Permanent position, Special Security guards are employed directly through a establishment of Public Security corporation, protective officers are hired by the Government, Self-guards are hired directly by the Government, Private police guards are employed directly by the Government. In order to reflect the Changes the Government policy of making Temporary position employees into the Permanent, the Special Security Guards from Private Security Firms in the National Critical Facility's protection environment, protective personnels operation characteristic under various circumstances. Especially, in the process of making Special Security Guards to Permanent position, it is necessary to take precedence over the various opinions of Special Security Guards and stakeholder.

• Information Systems Review
• /
• v.17 no.3
• /
• pp.65-76
• /
• 2015

This paper examines the influence of neutralization techniques and voluntary actions on intention to comply information security policy. Data were collected through an online survey and hypothesis results were all hypotheses were supported. The results of this study improve understanding on the voluntary nature of employee behavior for participating in the organization's policies and the rationalization of the employees trying weakening the organization's policy intentions. The organization shoud implement specific education and training in order to suppress the rationalization of employees and develop a plan to have a kinship with the employees of the organization.

• Journal of the Korea Institute of Information Security & Cryptology
• /
• v.32 no.3
• /
• pp.575-590
• /
• 2022

Recently, organizations are increasing their investment to protect information resources from information security(IS) threats through the adoption of IS policies and technologies. However, IS incidents occur in a variety of ways, such as intrusions from outside the organization and exposure to the inside. Our study presented the negative effects of IS role stress on organizational insiders and suggested factors from the organizational and individual perspectives for mitigating IS role stress. We conducted a survey on employees of companies that introduced and applied IS policies to their work and tested the hypothesis using 329 samples. As a result, IS organization justice reduced IS role stress and strengthened IS positive psychological capital, thereby affecting the IS compliance intention of employees. Also, IS positive psychological capital moderated the relationship between IS stress and IS compliance intention. This study contributes to the achievement of internal IS goals by suggesting the conditions that affect the IS compliance behavior of employees in terms of the organizational environment and individual characteristics

• The Journal of the Korea institute of electronic communication sciences
• /
• v.19 no.2
• /
• pp.427-436
• /
• 2024

Recently, the importance of information security (IS) has been socially recognized, leading organizations to adopt IS policies, secure specialized personnel, and demand IS compliance from employees. However, the implementation of these policies can disrupt existing work processes, causing resistance among employees. This study aims to elucidate the mechanism linking work stress, caused by IS policies that do not consider the work system, to individual job burnout and IS policy resistance. We established a research model and hypotheses based on previous studies and utilized structural equation modeling with data collected from organization members of companies that have implemented IS policies. The results of the structural equation modeling confirmed that work ambiguity and work impediment are linked to IS policy resistance through job burnout, characterized by emotional exhaustion and disengagement. Our findings suggest that the swift implementation of IS policies can provoke a backlash from employees, with stress being the primary cause. This paradoxically indicates the need for the development of organization-specific IS policies.