Publication
Applying action research in the adoption of information systems security policies
| dc.contributor.author | Lopes, Isabel Maria | |
| dc.contributor.author | Sá-Soares, Filipe de | |
| dc.date.accessioned | 2013-07-10T13:06:06Z | |
| dc.date.available | 2013-07-10T13:06:06Z | |
| dc.date.issued | 2013 | |
| dc.description.abstract | Information Systems Security (ISS) is a critical issue for a wide range of organizations. This paper focuses on organizations belonging to a particular sector, namely Local Public Administration, where public and personal information must be protected by those in charge, and where there must be a concern to view security as a priority. There are several measures which can be implemented in order to ensure the effective protection of information assets, among which stands out the adoption of ISS policies. A recent census concluded that among the 308 Town Councils in Portugal, only 38 indicated to have an ISS policy. The conclusion drawn from that study was that the adoption of ISS policies has not become a reality yet. As an attempt to mitigate this fact, an academic-practitioner collaboration effort was established regarding the implementation of ISS policies in three Town Councils. These interventions were conceived as Action Research projects. This article aims to constitute an empirical study on the applicability of the Action Research method in information systems, more specifically through the implementation of an ISS policy in Town Councils where previous attempts to adopt a policy have failed. The research question we intend to answer is to what extent this research method is adequate to reach the proposed goal. The results of the study suggest that Action Research is a promising means for the institutionalization of ISS policies adoption. It can both act as a research method, improving the understanding among researchers about the issues that hinder such adoption, and as a change method, assisting practitioners to overcome barriers that have prevented the implementation of ISS policies. | por |
| dc.description.sponsorship | This work is funded by FEDER funds through Programa Operacional Fatores de Competitividade – COMPETE and National funds by FCT – Fundação para a Ciência e Tecnologia under Project FCOMP-01-0124-FEDER-022674. | |
| dc.identifier.citation | Lopes, Isabel ; Sá-Soares, Filipe de (2013). Applying action research in the adoption of information systems security policies. In The 12th European Conference on Research Methodology for Business and Management Studies. Guimarães: Universidade of Minho. ISBN 978-1-909507-30-2 | por |
| dc.identifier.isbn | 978-1-909507-30-2 | |
| dc.identifier.uri | http://hdl.handle.net/10198/8517 | |
| dc.language.iso | eng | por |
| dc.peerreviewed | yes | por |
| dc.publisher | ACPI | por |
| dc.subject | Action research | por |
| dc.subject | Information Systems Security Policies | por |
| dc.title | Applying action research in the adoption of information systems security policies | por |
| dc.type | conference paper | |
| dspace.entity.type | Publication | |
| oaire.citation.conferencePlace | Univercidade of Minho, Guimarães | por |
| oaire.citation.title | The 12th European Conference on Research Methodology for Business and Management Studies | por |
| person.familyName | Lopes | |
| person.givenName | Isabel Maria | |
| person.identifier.ciencia-id | 8812-AE1C-A316 | |
| person.identifier.orcid | 0000-0002-5614-3516 | |
| person.identifier.rid | A-1728-2014 | |
| person.identifier.scopus-author-id | 55211017300 | |
| rcaap.rights | openAccess | por |
| rcaap.type | conferenceObject | por |
| relation.isAuthorOfPublication | 111716db-94a0-4c24-b739-330dc2ae79fc | |
| relation.isAuthorOfPublication.latestForDiscovery | 111716db-94a0-4c24-b739-330dc2ae79fc |
Files
License bundle
1 - 1 of 1
No Thumbnail Available
- Name:
- license.txt
- Size:
- 1.71 KB
- Format:
- Item-specific license agreed upon to submission
- Description: