• 경영과학
• /
• 제31권4호
• /
• pp.1-13
• /
• 2014

This study aims to expand the future study methodology and to develop a methodology of future-oriented curriculum analysis with future skills needs derived from patent analysis. With the case of information security, the methodology is applied to the 16 universities, which have information security department in undergraduate course. From the results, the followings are suggested : 1) for the increasing importance area including hacking, infiltration and PC security, a practical exercise should be emphasized; 2) for the convergence area including security policy, security legislation and OS security, proper faculties should be filed with recruiting field-based experts; 3) for the increasing importance area including professional area including security audit and information security protocol, the advanced curriculum related to graduate level should be provided.

• International Journal of Computer Science & Network Security
• /
• 제21권4호
• /
• pp.47-51
• /
• 2021

The article analyzes and studies that pedagogical design of the educational process using information and communication technologies in educational institutions of higher education based on the development of a model and methodology personalization of training will improve the quality of the educational process at the university and solve the identified contradiction. A qualitative analysis of foreign countries in the possibility of using information and communication technologies in educational institutions of higher education is carried out.

• 한국재난정보학회 논문집
• /
• 제9권3호
• /
• pp.290-299
• /
• 2013

본 연구는 국회의사당의 시설을 이용하는 인원을 대상으로 설문조사를 실시하고, 그 결과를 분석하여 국회의사당의 시설보안 향상방안을 제시하였다. 국회의사당 시설을 이용하는 많은 대상자들은 본인의 보안의식수준이 보통이상인 것으로 인식하고 있고, 국회의사당이 국가중요시설 가급이라는 사실은 알고 있지만 국가중요시설 가급이 어떤 시설인지에 대해 모르는 경우가 많은 것으로 나타났다. 국회의사당의 시설보안설계가 부족하고 현재보다 더 강화된 출입통제 조치가 필요하다고 인식하고 있으며, 스피드게이트 설치 및 장애물 보강이 필요한 것으로 인식하고 있다. 출입통제강화 조치로 인한 불편함을 감수하겠다는 의견은 출입통제장치 설치에 긍정적으로 작용할 수 있을 것이다. 보안교육의 필요성에 대한 인식이 비교적 높지만 현재 적절한 보안교육이 이루어지지 않고 있어 현실적이고 적절한 보안교육방법을 찾고 이를 실행하는 것이 필요하며, 실질적인 교육을 위해 국회시설별 이용자의 보안인식을 고려하고, 교육여건을 감안하여 보안교육역량을 높이는 것이 필요하다.

• 한국정보시스템학회지:정보시스템연구
• /
• 제15권1호
• /
• pp.145-168
• /
• 2006

Current computer viruses are one of the most serious problems in information age due to their potential demage and impact on use of information systems. To make the problem worse, virus development technology has been advanced rapidly, and use of network systems has expanded widely. Therefore computer viruses are much more complex and use of anti-virus software(AV S/W) is not enough to prrevent virus incidents. It implies that computer viruses as well as other information security matters are not solely a technical problem but also a managerial one. This study emphasized on computer virus controls from managerial perspective of information security and investigated factors influencing the effectiveness of computer virus controls. Organization's comprehensive security policies provide guidelines on how organization or individual can protect themselves from computer viruses. Especially, user's education has positive impact on user's security related characteristics. Based on the analysis of research model using structural equation modeling technique, security policies were influencing security controls and improving user's computer viruses related awareness. Also security controls had positive impact on security effectiveness. However, no significant relationship was found between user's security related characteristics and security effectiveness.

• International Journal of Computer Science & Network Security
• /
• 제22권1호
• /
• pp.331-339
• /
• 2022

The global process of transition from industrial to information society, as well as socio-economic changes taking place in Ukraine, require significant changes in many areas of state activity. It is especially connected with the reforms in the sphere of education. Today, national programs provide for the development of education on the basis of new progressive concepts, the introduction of the educational process of new pedagogical technologies and scientific achievements, the creation of a new system of information education, entrance of Ukaine into the transcontinental computer information system. Information technologies are qualitatively changing the key resources of development: this is no longer a space with fixed production, but primarily mobile finance and intelligence. They have a direct impact on the formation of personal growth, professional content and self-organization, emotional and psychological maturity and consciousness, and so on. One of the main factors in ensuring the stability and social education of the country's citizens is the culture of security, the formation and development of which is an urgent problem today. Comprehensive and systematic development of security culture will significantly increase the readiness of the population, the level of environmental, labor and patriotic education, reduce human losses, material damage from emergencies. Ecological education can be carried out more successfully only gradually and in accordance with the socio-psychological periods of one's development: kindergarten - school - college - university. The creation of such a system of environmental education should be enshrined as the basis of state environmental policy as a constitutional norm with the usage of information technology. Graduates of universities, who are the future of our country, after mastering the skills of basic environmental education must have a high level of environmental culture, which is, in turn, part of general human culture, and investigate environmental issues from the standpoint of their profession. It is known that with the help of environmental education the collective intelligence of society is formed, which can predict human activities and processes occurring in nature, and in some way to help with the elimination of crises. It is through environmental education that another system of human values is being formed, which places great emphasis on intangible wealth and solidarity, and great responsibility of humanity for the ecological state of the native country; provides a higher standard of living as a result of sustainable development, through the introduction of information technology in this system. To improve the quality of life, we need better knowledge, which must be implemented through information technology at the international level.

• 한국정보시스템학회지:정보시스템연구
• /
• 제28권4호
• /
• pp.105-129
• /
• 2019

Purpose Issues related to information security have been a crucial topic of interest to researchers and practitioners in the IT/IS field. This study develops a research model based on a Structure-Conduct-Outcome (SCO) framework for the social exchange relationship between employees and organizations regarding information security. Design/methodology/approach In applying an SCO framework to information security, structure and conduct are activities imposed on employees within an organizational context; outcomes are activities that protect information security from an employee. Data were collected from 438 employees working in manufacturing and service firms currently implementing an information security policy in South Korea. Structural equation modeling (SEM) with AMOS 22.0 is used to test the validation of the measurement model and the proposed casual relationships in the research model. Findings The results demonstrate support for the relationships between predicting variables in organization structure (security policy and physical security system) and the outcome variables in organization conduct (top management support, security education program, and security visibility). Results confirm that the three variables in organization conduct had a positive effect on individual outcome (security knowledge and compliance intention).

• 경영정보학연구
• /
• 제18권3호
• /
• pp.137-153
• /
• 2016

조직의 비즈니스 환경이 스마트워크와 같이 모바일이나 네트워크에 의존하는 비중이 높아지면서, 기업들은 정보보안에 더 높은 관심을 가지게 되었다. 특히, 내부자의 의한 정보유출은 기업입장에서 상당히 부정적인 영향을 미치게 된다. 따라서 기업뿐 아니라 정보보안 관련 연구자들은 조직원의 정보보안 정책 준수에 초점을 두어 연구를 해왔다. 그 중에서 정보보안 대책(Information security countermeasure)은 조직원의 정보보안 정책 준수 의도의 선행요인으로 알려져 왔다. 하지만 조직원이 정보보안 대책을 인식하도록 하는 선행요인에 대한 연구는 미흡한 실정이다. 본 연구는 조직원의 보안대책 인식에 대한 선행요인으로 경영진의 정보보안 지능을 제안하고 이들의 관계를 실증적으로 연구하였다. 정보보안 지능은 Kirwan(2008)이 제안한 안전지능을 응용하여 정보보안 관련 문제해결능력, 사회적 역량, 정보보안 지식으로 구성된다. 연구결과 경영진의 정보보안 관련 문제해결 능력과 정보보안 지식은 조직원이 정보보안 정책 및 교육/훈련 프로그램을 인식하는데 긍정적인 영향을 미치는 것으로 나타났다.

• 시큐리티연구
• /
• 제59호
• /
• pp.133-159
• /
• 2019

2013년 시범적으로 도입된 자유학기제는 2016년도부터 모든 중학교에서 전면 실행되었다. 중학교 자유학기제는 학생들의 꿈과 진로탐색을 목적으로 학생 참여형 수업으로 교과목 활동과 자유학기 활동으로 구분되어 진행된다. 자유학기 활동 중 교과목과 연결된 다양한 직업군의 활동이 논의 되고 있지만 중학교 산업보안 교육의 발전 방향에 대한 연구는 미흡한 실정이다. 또한 교육부 지원으로 교사, 학생, 학부모에게 진로에 관한 다양한 정보를 제공하는 진로사이트에서는 진로와 학과 분야 모두에서 산업보안에 대한 정체성이 확립되지 않았다. 이에 본 연구는 자유학기제에 대한 전반적인 이해와 함께 현재 교육부가 운영하는 진로체험망에서 산업보안 키워드 분석을 통하여 진로교육 현황을 살펴보고 산업 보안 교육이 활성화 될 수 있는 추진전략을 모색하였다. 본 연구의 분석결과, 중학교 자유학기제를 통한 산업보안 진로교육 활성화를 위해서는 진로전산망을 통한 산업보안 분야 활성화, 산업보안 교육 프로그램 개발, 산업보안 전문 강사 양성 및 배치, 그리고 산업보안 진로체험 지원시스템 구축이 필요한 것으로 나타났다.

• 정보보호학회논문지
• /
• 제26권3호
• /
• pp.769-776
• /
• 2016

최근 사이버공격은 국경을 초월하여 국가의 사이버 공간을 지속적으로 위협하고 있다. 이런 사이버공격은 국가 주요기반시설을 마비시킬 수 있는 수준으로 지능화 고도화되는 양상을 보여주고 있다. 이런 사실은 원전 해킹 위협, 3.20 사이버테러 등의 사건에서 잘 볼 수 있다. 특히 국가 중요 정보가 존재하는 국가 공공기관에서는 이와 같은 사이버공격으로 대규모 피해가 예상되기 때문에 사전예방이 중요하다. 기술적인 대응도 중요하지만 국가 공공기관 근무자에게 사이버보안 교육을 통해 사이버 보안의식 고취 및 보안 전문지식 향상을 통해 보안 수준을 높이는 것이 중요하다. 이에 본 논문에서는 공공분야 근무자들에 대한 단기 교육과정을 통해 최고의 보안 효과 상승을 위한 교육과정을 제안한다.

• 한국멀티미디어학회논문지
• /
• 제20권12호
• /
• pp.1970-1979
• /
• 2017

Computerization of educational administration following educational informatization of government has been steadily improved for the purpose of teachers' offload and job efficiency, finally resulting that NEIS(National Education Information System) has been completed. The NEIS consists of Nationwide service of NEIS, Business portal system of NEIS, Authentication management system and so on. Students, parents and civil petitioners handle civil affairs through Nationwide service of NEIS and teachers and persons of task conduct theirs business by accessing the Business portal system of NEIS. At this time, users have to obtain their certification from Authentication management system. Previous Studies were mainly focused on the evaluation about its performance according to the introduction of NEIS. But from now on there is a growing interest in security assessment and an efficient method for security improvement to check if NEIS works properly. Therefore, in this thesis, we'll propose an analytic framework in which security assessment is carried out after comprehending the fault structures through performing Fault Fishbone Analysis based on the Fault Tree Analysis. As a result of the system applied, the system had the highest rate of improvement to 47.7 percent.