한국산업정보학회논문지 (Journal of Korea Society of Industrial Information Systems)

한국산업정보학회 (Korea Society of Industrial Information Systems)
권호 표지
DOI QR코드

DOI QR Code

금융회사의 정보보호활동이 정보보호의식 및 정보보호자신감에 미치는 영향 : 정보보호의식의 매개효과를 중심으로

Influence of Information Security Activities of Financial Companies on Information Security Awareness and Information Security Self Confidence : Focusing on the Mediating Effect of Information Security Awareness

  • 소현철 (호서대학교 벤처경영학과) ;
  • 김종근 (호서대학교 벤처경영학과)
  • 투고 : 2017.07.31
  • 심사 : 2017.08.30
  • 발행 : 2017.08.31
PDF 다운로드
⟨ 이전 논문 다음 논문 ⟩

초록

본 연구의 목적은 금융회사의 정보보호활동이 정보보호담당자들의 보안업무에 대한 자신감에 미치는 영향을 파악하고 미흡한 점을 보완하기 위한 학문적, 실무적 시사점을 찾기 위한 연구이다. 연구결과, 금융회사가 정보보호교육, 침해사고 대응 및 입/출입 보안에 중점을 두고 정보보호활동을 하면 정보보호담당자의 회사에 대한 정보보호자신감 및 직원들의 정보보호의식 수준이 높아진다는 것을 확인할 수 있었다.

The Purpose of this Study is to find out the Implications of the Information Security Activities of Financial Companies on the Confidence of the Information Security Officers and to find Academic and Practical Implications to Supplement the Insufficiencies. As a Result, it was Confirmed that the Information Security Officer's Confidence in Information Security for Companies and the Level of Information Security Awareness of the Employees are Increased when Financial Companies Conduct Information Protection Activities Focusing on Information Security Education, Security Incident Responses and In/Out Security.

키워드

참고문헌

  1. Bank of Korea, "2016 Finance Information Enforcement Situation," 2017.
  2. Hong, K. H., "A Study on the Effect of Information Security Controls and Processes on the Performance Security", Doctor's Dissertation, Dept of Management Information Systems Graduate School, Kookmin University, pp. 64-75, 2003.
  3. Park, S. S., "A Study on the Effort and Status of the Enterprise Information Asset Protection Activity", Master's Dissertation, IT Management Strategy Graduate School , Yonsei University, pp. 50-57, 2008.
  4. Baek, M. J., "A Study on the Effect of Information Ethics on the Performance of Information Security in Organization", Doctor's Dissertation, Department of Business Administration, Graduate School Dankook University, pp. 37-128, 2010.
  5. Son, T. H., "The Effect of Corporate Information Security Activities on the Performance of Information Security and Information Management", Doctor's dissertation, Department of Industrial and Management Engineering Graduate School, Myongji University, pp. 6-7, 2015.
  6. Pipkin, D. L., "Information Security", Prentice Hall PTR, 2000.
  7. Kim, S. C., "The Effect of Broadcasting Company's Information Security Activity on the Compliance Attitude and Intention of Employees - Focusing on the Information Security Management System -", Doctor's Dissertation, The Graduate School of Public Policy and Information Technology, Seoul National University of Science and Technology Companies, 2017.
  8. Park, J. K. and Kim, I. J., "A Study for Influencing Factors of Organizational Performance : The Perspective of the Mediating Effect of Information Security Maturity Level", The Journal of Information Systems, Vol. 23, No. 3, pp. 99-125, 2014. https://doi.org/10.5859/KAIS.2014.23.3.99
  9. National Intelligence Service, "Framework Act on National Information Article 3", 2017.
  10. Korea Internet Security Agency, "Information Security Management System Certification Guideline", 2013.
  11. National Information Graduate School, Industrial Security Practical Affairs, 2006.
  12. Sun, H. G., "Impacts of Information Security Policies and Organizations on the Information Security Performance in Korean Enterprises", Doctor's dissertation, Dept. of Management Systems Graduate School, Kookmin University, 2004.
  13. Lee, C. H., "A Study on the Influential Factors for the Security Policy - Focusing on the Recognition of Corporate Security Manager", Doctor's Dissertation, Department of Public Administration Graduate School, Kyungwon University, 2010.
  14. The Financial Supervisory Service, "Regulation on Supervision of Electronic Financial Transactions", Article 8.
  15. Bang, H. G., "A Study of Security Personal Managements and Adequacy by State-Owned Company", June. 2011.
  16. Song, K. J., "Rish Management of Customer Information Asset in Financial Institute", Deloitte Anjin Review 2014, Vol. 18, No. 1, pp. 39-48, 2014.
  17. Jeon, J. H., "A Study on the Costs Factors of an Being Additional Budget by the Security System", Korean Institute of Communications and Information Sciences Vol. 36, No. 12, pp. 1481-1490, 2011. https://doi.org/10.7840/KICS.2011.36B.12.1481
  18. Jeong, C. Y., "Recent Financial Supervisory Authorities' Policy and Financial Company Response to Financial Information Security Accidents", Credit Union Research, Vol. 63, No. 2, pp. 45-82, 2015.
  19. Gyeon, E. K., Lee, H. S. and Chae, S. M., "An Empirical Study of Relationship Between Information Security Education and Information Security Incidents", Korea Academic Society of Business Administration, 2016 Spring Congress, The Graduate School Ewha University, 2016.
  20. D'Arcy, J., Hovav, A. and Galletta, D., "User Awareness of Security Countermeasures and its Impact on Information Systems Misuse: a Deterrence Approach", Information Systems Research, Vol. 20, pp.79-98, 2009. https://doi.org/10.1287/isre.1070.0160
  21. Kim, J. W. and Kim, Y. G., "A Research on Information Education Outsourcing at Public Organizations", E-Business Research, Vol. 11, No. 1, pp. 265-282, 2010.
  22. National Intelligence Service, "2016 a White Paper on National Information Security", 2017.
  23. Ha, G. R., Yoon, S. H., and Choi, S. B., "Critical Factors for Outsourcing Partner Selection of Manufacturing Firms: An AHP Based Analysis", The Journal of Management Education, Vol. 26, No. 2, pp. 489-515, 2011.
  24. Kim, G. M., "The Impact of IT Governance and IT Service Management Process Maturity on IT Outsourcing Success", Master's Dissertation, Graduate School of Information and Telecommunication, KonKuk University, 2014.
  25. Jang, Y. S., Jeon, S. and Jeon, D. H., "Cases Analysis and Implications of Personal Information Leaking in E-Business", E-Trade Review, Vol. 12, No. 1, pp. 1-27, 2014.
  26. Anat Hovav. and Han, J. Y., "The Impact of Security Breach Announcements on the Stock Value of Companies in South Korea", The Journal of Internet Electronic Commerce Research, Vol. 13, No. 3, pp. 43-67, 2013.
  27. Financial Supervisory Service, "IT Business Practice Evaluation Manual", 2016.
  28. Chung, T, H., "Improvement of Physical Security System Operation", Journal of the Korea Society of Disaster Information, Vol. 10, No. 2, pp. 282-286, 2014. https://doi.org/10.15683/kosd.2014.10.2.282
  29. Bulgurcu, B. H. and Cavusogle, H., "Roles of Information Security Awareness and Perceived Fairness in Information Security Policy Compliance", AMCIS 2009 Proceedings, 2009.
  30. Siponen, M, A., "Conceptual Foundation for Organizational Information Security Awareness", Information Management and Computer Security, Vol. 8, No. 1, pp. 31-41, 2000. https://doi.org/10.1108/09685220010371394
  31. Bulgurcu, B., Cavusoglu, H. and Benbasat, I. "Information Security Policy Compliance : An Empirical Study of Rationality-Based Beliefs and Information Security Awareness", MIS Quarterly, Vol. 34, pp. 523-548, 2010. https://doi.org/10.2307/25750690
  32. Von Solms, B., "Information Security - A Multidimensional Discipline", Computers and Security, Vol. 20, No. 6, pp. 504-508, 2001. https://doi.org/10.1016/S0167-4048(01)00608-3
  33. Kim, J. Y., "Effect of Sport Confidence and Competitive State Anxiety on Performance of Bowling Player", Master's Dissertation, Graduate School of Education Kookmin University, pp. 13, 2010.
  34. Im, C. H., " Effective Information Security Awareness Improvement Policy", Korea Institute of Information Security & Cryptology, Vol. 16, No. 2, pp. 30-36, 2006.
  35. Choi, N., Kim, D. and Whitmore, A., "Knowing is doing", Information Management & Computer Security Vol. 16, No 5, pp. 484-501, 2008. https://doi.org/10.1108/09685220810920558
  36. Na, Y. S., "A Study of the Organization associated with Security Awareness and Security Level in Smart Business Environment", Master's Whitmore, Department of Business Information Graduate School, Sangmyong University, pp. 53-54, 2015.
  37. Lee, S. J. and Lee, M. J., "An Exploratory Study on the Information Security Culture Indicator", Information Policy, Vol. 15, No.3, pp. 100-119, 2008.
  38. Chen, C., Medlin, B., and Shaw, R., "A Cross-Cultural Investigation of Situational Information Security Awareness Programs", Information Management & Computer Security, Vol. 16, No. 4, pp. 360-376, 2008. https://doi.org/10.1108/09685220810908787
  39. Kim, J. K. and Kang, D, Y., "The Effects of Security Policies, Security Awareness and Individual Characteristics on Password Security Effectiveness", Korea Institute of Information Security & Cryptology, pp. 123-133, 2008.
  40. Kang, D, Y., "The Influence of Password Selection on the Security Effectiveness", Master's Dissertation, Department of Business Administration Graduate School, Pusan National University, pp. 72-73, 2010.
  41. Kang, J. H. and Ha, K. S., "A Study of Effect of Self-Leadership by College Student on Recognition of Opportunity on Establishment of Company and of Establishing Company: Created on Mediated Effect of Enterpreneurship", The Korea Society of Business Venturing, Vol. 10, No. 4, pp. 1-12, 2015.
  42. The SEOUL ECONOMIC DAILY, "'Hacker Frequenter Target', Domestic Financial Institutions' Security Investment is Only 10 % of their IT Budget", 2017.

피인용 문헌

  1. 개인의 대처 유형과 조직문화가 조직원의 정보보안에 미치는 영향 vol.26, pp.2, 2021, https://doi.org/10.9723/jksiis.2021.26.2.027