Please use this identifier to cite or link to this item: https://etd.cput.ac.za/handle/20.500.11838/2749
DC FieldValueLanguage
dc.contributor.advisorDe la Harpe, Andréen_US
dc.contributor.advisorAfolayan, Ayodeji Olanrewajuen_US
dc.contributor.authorMichiel, Michaelen_US
dc.date.accessioned2018-12-07T10:42:24Z-
dc.date.available2018-12-07T10:42:24Z-
dc.date.issued2018-
dc.identifier.urihttp://hdl.handle.net/20.500.11838/2749-
dc.descriptionThesis (MTech (Information Technology))--Cape Peninsula University of Technology, 2018.en_US
dc.description.abstractIn today’s world, organisations cannot exist without having information readily available. The protection of information relies not only on technology but also on the behaviour of employees. The failure to institutionalise an information security culture inside an organisation will cause the continued occurrence of security breaches. The aim of the research is to explore how an information security culture can be institutionalised within a petroleum organisation in the Western Cape. The primary research question is posed as follows: “What are the factors affecting the institutionalisation of an information security culture?” To answer the research question, a study was conducted at a petroleum organisation in the Western Cape. A subjectivist ontological and interpretivist epistemological stance has been adopted and an inductive research approach was followed. The research strategy was a case study. Data for this study were gathered through interviews (12 in total) using semi-structured questionnaires. The data collected were transcribed, summarised, and categorised to provide a clear understanding of the data. For this study, twenty-four findings and seven themes were identified. The themes are: i) user awareness training and education; ii) user management; iii) compliance and monitoring; iv) change management; v) process simplification; vi) communication strategy; and vii) top management support. Guidelines are proposed, comprising four primary components. Ethical clearance to conduct the study was obtained from the Ethics committee of CPUT and permission to conduct the study was obtained from the Chief Information Officer (CIO) of the petroleum organisation. The findings point to collaboration between employees, the Information Security department, and management in order to institute a culture of security inside the organisation.en_US
dc.language.isoenen_US
dc.publisherCape Peninsula University of Technologyen_US
dc.subjectCorporations -- Security measuresen_US
dc.subjectComputer securityen_US
dc.subjectCorporate cultureen_US
dc.subjectInformation technology -- Security measuresen_US
dc.subjectSecurity systemsen_US
dc.titleThe institutionalisation of an information security culture in a petroleum organisation in the Western Capeen_US
dc.typeThesisen_US
Appears in Collections:Information Technology - Master's Degree
Files in This Item:
File Description SizeFormat 
216272149-Michiel-Michael-MTech-Information Technology-Inf&Des-2018.pdfThesis1.56 MBAdobe PDFThumbnail
View/Open
Show simple item record

Page view(s)

736
Last Week
0
Last month
6
checked on Nov 24, 2024

Download(s)

656
checked on Nov 24, 2024

Google ScholarTM

Check


Items in Digital Knowledge are protected by copyright, with all rights reserved, unless otherwise indicated.