Institutional Repository

An investigation of information security policies and practices in Mauritius

Show simple item record

dc.contributor.advisor Venter, L. M. (Prof.) en
dc.contributor.advisor Smith, E. (Prof.) en
dc.contributor.author Sookdawoor, Oumeshsingh en
dc.date.accessioned 2009-08-25T10:53:47Z
dc.date.available 2009-08-25T10:53:47Z
dc.date.issued 2009-08-25T10:53:47Z
dc.date.submitted 2005-11-30 en
dc.identifier.citation Sookdawoor, Oumeshsingh (2009) An investigation of information security policies and practices in Mauritius, University of South Africa, Pretoria, <http://hdl.handle.net/10500/1503> en
dc.identifier.uri http://hdl.handle.net/10500/1503
dc.description.abstract With the advent of globalisation and ever changing technologies, the need for increased attention to information security is becoming more and more vital. Organisations are facing all sorts of risks and threats these days. It therefore becomes important for all business stakeholders to take the appropriate proactive measures in securing their assets for business survival and growth. Information is today regarded as one of the most valuable assets of an organisation. Without a proper information security framework, policies, procedures and practices, the existence of an organisation is threatened in this world of fierce competition. Information security policies stand as one of the key enablers to safeguarding an organisation from risks and threats. However, writing a set of information security policies and procedures is not enough. If one really aims to have an effective security framework in place, there is a need to develop and implement information security policies that adhere to established standards such as BS 7799 and the like. Furthermore, one should ensure that all stakeholders comply with established standards, policies and best practices systematically to reap full benefits of security measures. These challenges are not only being faced in the international arena but also in countries like Mauritius. International researches have shown that information security policy is still a problematic area when it comes to its implementation and compliance. Findings have shown that several major developed countries are still facing difficulties in this area. There was a general perception that conditions in Mauritius were similar. With the local government's objective to turn Mauritius into a "cyber-island" that could act as an Information Communication & Technology (ICT) hub for the region, there was a need to ensure the adoption and application of best practices specially in areas of information security. This dissertation therefore aims at conducting a research project in Mauritius and assessing whether large Mauritian private companies, that are heavily dependent on IT, have proper and reliable security policies in place which comply with international norms and standards such as British Standard Organisation (BSO) 7799/ ISO 17799/ ISO 27001. The study will help assess the state of, and risks associated with, present implementation of information security policies and practices in the local context. Similarities and differences between the local security practices and international ones have also been measured and compared to identify any specific characteristics in local information security practices. The findings of the study will help to enlighten the security community, local management and stakeholders, on the realities facing corporations in the area of information security policies and practices in Mauritius. Appropriate recommendations have been formulated in light of the findings to improve the present state of information security issues while contributing to the development of the security community en
dc.format.extent 1 online resource (xiii, 152 leaves.)
dc.language.iso en en
dc.subject Information Communication & Technology en
dc.subject Adherence to established standards en
dc.subject Information security framework en
dc.subject Information security policy en
dc.subject Information security practices en
dc.subject Security standards en
dc.subject Compliance en
dc.subject Information security risk en
dc.subject Procedures en
dc.subject.ddc 005.8096982
dc.subject.lcsh Information technology -- Security measures -- Mauritius
dc.subject.lcsh Information policy -- Mauritius
dc.subject.lcsh Computer systems -- Security measures -- Mauritius
dc.title An investigation of information security policies and practices in Mauritius en
dc.type Thesis en
dc.description.department Computing en
dc.description.degree M.Sc. (Information Systems) en


Files in this item

This item appears in the following Collection(s)

Show simple item record

Search UnisaIR


Browse

My Account

Statistics