Information Systems Security in the Greek Public Sector *+
Abstract:
The security aspects of public sector information systems are important as the respective systems are often part of critical infrastructures or deal with personal or sensitive data. A set of 53 Greek public sector organizations were investigated by means of a structured questionnaire concerning important aspects of Information Systems Security. We present the relevant theoretical background, the methodology of our research, and an analysis of the obtained results. Greek public sector organizations have only a basic level of Information System Security awareness. Most care about digital data confidentiality; however, only a small percentage have developed a systematic, complete, and integrated approach towards the security of their information system, including internal audit procedures. The importance of proper training and generally the importance of the human factor for achieving high levels of Information Systems Security is often underestimated.
Citations
| 15 | Risk assessment and information systems – Willcocks, Margetts - 1994 |
| 6 | A comparative framework for risk analysis methods – Eloff, Labuschagne, et al. - 1993 |
| 5 | Addressing threats in World Wide Web technology – Meyer, Schaeffer, et al. - 1995 |
| 4 | Electronic service delivery in public administration: some trends and issues – Bekkers, Zouridis - 1999 |
| 2 | System Security: A Management Perspective – Oppenheimer, Wagner, et al. - 1997 |
| 2 | Information Technology for Productivity : May be, Maybe Not : An Assessment – Swain, White - 1992 |
| 2 | Study of the Information Technology Actions of the Second Community Support Framework. Final Thesis – National Academy of Public Administration – Tsouma - 1997 |
| 1 | Stephanos Gritzalis – Spinellis, Kokolakis - 1999 |
| 1 | The Manager as a Technologist – Willcocks - 1992 |
| 1 | Security assurance in information systems – Wilsher, Kurth - 1996 |
