Políticas de Seguridad de la Información: Revisión sistemática de las teorías que explican su cumplimiento

Translated title of the contribution: Information Security Policies: A systematic review of theories explaining their compliance

Josue Ruben Altamirano Yupanqui, Sussy Bayona Oré

Research output: Contribution to journalArticlepeer-review

13 Scopus citations

Abstract

The information security policies implemented by organizations to protect their information is perhaps one of the issues that could generate controversy, due to the fact that despite their existence there are violations of information security, caused by the human factor. The different roles that people play, such as: end user, security team administrator, information administrator, security policy supervisor, information system attacker, etc., will have a different effect and consequence for each case. Through the systematic literature review it has been found that the most relevant theories that the authors are employing in their investigations related to compliance with security policies are focused on understanding human behavior through psychological or social theories, which leads to an interdisciplinary approach that allows a global vision, not only from a technological perspective, but from the perspective of other disciplines, which together lead to a real approach to the problem.

Translated title of the contributionInformation Security Policies: A systematic review of theories explaining their compliance
Original languageSpanish
Pages (from-to)112-134
Number of pages23
JournalRISTI - Revista Iberica de Sistemas e Tecnologias de Informacao
Volume2017
Issue number25
DOIs
StatePublished - 2017
Externally publishedYes

Fingerprint

Dive into the research topics of 'Information Security Policies: A systematic review of theories explaining their compliance'. Together they form a unique fingerprint.

Cite this