Open Access. Powered by Scholars. Published by Universities.®
Management Information Systems Commons™
Open Access. Powered by Scholars. Published by Universities.®
- Discipline
- Keyword
- File Type
Articles 1 - 6 of 6
Full-Text Articles in Management Information Systems
An Exploration Of Human Resource Management Information Systems Security, Humayun Zafar, Jan Clark, Myung Ko
An Exploration Of Human Resource Management Information Systems Security, Humayun Zafar, Jan Clark, Myung Ko
Humayun Zafar
In this exploratory study we investigate differences in perception between management and staff with regard to overall information security risk management and human resources security risk management at two Fortune 500 companies. This study is part of a much larger study with regard to organizational information security issues. To our knowledge, this is the first time the issue of security risk management has been discussed in the context of human resource systems. We found significant differences between management and staff perceptions regarding overall security risk management and human resources security risk management. Our findings lay the ground work for future …
An Identification And Evaluation Of Information Security And Assurance Research Outlets, Michael Whitman, Humayun Zafar, Herbert J. Mattord
An Identification And Evaluation Of Information Security And Assurance Research Outlets, Michael Whitman, Humayun Zafar, Herbert J. Mattord
Humayun Zafar
The purpose of this study is to identify and comparatively assess the quality of information security specific publishing venues. Past studies in information systems and computer science have shown that information security-focused research can be published in mainstream information systems- and computer science-centric periodicals; however no studies to date have been found that specifically compared venues focused primarily on information security. Therefore the results of this study, when combined with assessments of publishing venues from those disciplines, can provide a more comprehensive perspective on publishing opportunities for academic authors in information security. Faculty members seeking research recognition should strive to …
Security Risk Management At A Fortune 500 Firm: A Case Study, Humayun Zafar
Security Risk Management At A Fortune 500 Firm: A Case Study, Humayun Zafar
Humayun Zafar
Information security is a naturally intrusive topic that has not been researched to its full extent in IS. Taking note of a previous information security study that failed and lessons learned from it, we successfully carry out a study of our own with some modifications. The purpose of the study was to successfully identify critical success factors for an effective security risk management program at a Fortune 500 firm. In this paper we detail the modified critical success factor method that was used, which we hope will prove beneficial for academic researchers. The study has practical implications in regard to …
An Exploration Of Human Resource Management Information Systems Security, Humayun Zafar, Jan Guynes Clark, Myung S. Ko
An Exploration Of Human Resource Management Information Systems Security, Humayun Zafar, Jan Guynes Clark, Myung S. Ko
Humayun Zafar
In this exploratory study we investigate differences in perception between management and staff with regard to overall information security risk management and human resources security risk management at two Fortune 500 companies. This study is part of a much larger study with regard to organizational information security issues. To our knowledge, this is the first time the issue of security risk management has been discussed in the context of human resource systems. We found significant differences between management and staff perceptions regarding overall security risk management and human resources security risk management. Our findings lay the ground work for future …
The Economic Ramifications Of Strategic It Security Information Sharing In The Financial Services Industry, Humayun Zafar, Yoris A. Au
The Economic Ramifications Of Strategic It Security Information Sharing In The Financial Services Industry, Humayun Zafar, Yoris A. Au
Humayun Zafar
We investigate the economic ramifications of strategic IT security information sharing among firms in the financial services industry. An IT security information sharing system can potentially minimize security breaches. However, although the Presidential Decision Directive/NSC-63 encouraged the establishment of such a system in the form of industry based information sharing and analysis centers (ISACs), it is injudicious to assume that firms will be willing to naively share their security information with their strategic competitors. We argue that without a proper mechanism some firms will try to put in minimum effort, potentially reducing the system’s reliability, and aim to answer the …
Financial Impact Of Information Security Breaches On Breached Firms And Their Non-Breached Competitors, Humayun Zafar, Myung Ko, Kweku-Muata Osei-Bryson
Financial Impact Of Information Security Breaches On Breached Firms And Their Non-Breached Competitors, Humayun Zafar, Myung Ko, Kweku-Muata Osei-Bryson
Humayun Zafar
Information security breaches pose a growing threat to organizations and individuals, particularly those that are heavily involved in e-business/e-commerce. An information security breach can have wide-ranging impacts, including influencing the behaviors of competitors and vice versa within the context of a competitive marketplace. Therefore, there is a need for further exploration of implications of information security breaches beyond the focus of the breached firm. This study investigates the financial impact of publicly announced information security breaches on breached firms and their non-breached competitors. While controlling for size and the industry the firm operates in, the authors focus on specific types …