Institutional Repository

Towards a conceptual framework for information security digital divide

Show simple item record

dc.contributor.advisor Ngassam, Ernest Ketcha
dc.contributor.author Chisanga, Emmanuel
dc.date.accessioned 2017-11-20T07:47:21Z
dc.date.available 2017-11-20T07:47:21Z
dc.date.issued 2016-10
dc.identifier.citation Chisanga, Emmanuel (2016) Towards a conceptual framework for information security digital divide, University of South Africa, Pretoria, <http://hdl.handle.net/10500/23367>
dc.identifier.uri http://hdl.handle.net/10500/23367
dc.description.abstract In the 21st century, information security has become the heartbeat of any organisation. One of the best-known methods of tightening and continuously improving security on an information system is to uniquely and efficiently combine the human aspect, policies, and technology. This acts as leverage for designing an access control management approach which not only avails parts of the system that end-users are permitted to but also regulates which data is relevant according to their scope of work. This research explores information security fundamentals at organisational and theoretical levels, to identify critical success factors which are vital in assessing the organisation’s security maturity through a model referred to as “information security digital divide maturity framework”. The foregoing is based on a developed conceptual framework for information security digital divide. The framework strives to divide end-users, business partners, and other stakeholders into “specific information haves and have-nots”. It intends to assist organisations to continually evaluate and improve on their security governance, standards, and policies which permit access on the basis of each end-user or stakeholder’s business function, role, and responsibility while at the same time preserving the traditional standpoint of confidentiality, integrity, and availability. After a thorough review of a range of frameworks that have influenced the information security landscape, COBITTM was relied upon as a baseline for the development of the framework of the study because of its rich insight and maturity on IT management and governance. To ascertain that the proposed framework meets the required expectation, a survey targeting end-users within three participating organisations was carried out. The outcome revealed the current maturity level of each participating organisation, highlighting strengths and limitations of current information security practices. As such, for new organisations relying on the proposed framework for the first time, the outcome of such an assessment will represent a benchmark to be relied on for further improvement before embarking on the next maturity assessment cycle. In addition, a second survey was conducted with subject matter experts in information security. Data generated and collected through a questionnaire was then analysed and interpreted qualitatively and quantitatively in order to identify aspects, not only to gauge the acceptance of the proposed conceptual framework but also to identify areas for improvements. The study found that there was a general consensus amongst experts on the importance of a framework for benchmarking information security digital divide in organisations. It also provided a range of valuable input relied upon to improve the framework to its final version. en
dc.format.extent 1 online resource (xxi, 238 leaves) : color illustrations en
dc.language.iso en en
dc.subject Capability maturity en
dc.subject Digital divide en
dc.subject Information security en
dc.subject Information systems en
dc.subject Critical success factors en
dc.subject Information security digital divide en
dc.subject Information security maturity level en
dc.subject Frameworks en
dc.subject Benchmarking en
dc.subject.ddc 005.8
dc.subject.lcsh Computer security en
dc.subject.lcsh Computer networks -- Security measures en
dc.subject.lcsh Information storage and retrieval systems -- Security measures en
dc.subject.lcsh Information technology -- Security measures en
dc.title Towards a conceptual framework for information security digital divide en
dc.type Dissertation en
dc.description.department School of Computing en
dc.description.degree M. Sc. (Computing) en


Files in this item

This item appears in the following Collection(s)

Show simple item record

Search UnisaIR


Browse

My Account

Statistics