Proposed Framework for Understanding Information Security Culture and Practices in the Saudi Context

Authors

Mohammed Alnatheer, Queensland University of Technology
Karen Nelson, Queensland University of Technology

Document Type

Conference Proceeding

Publisher

Security Research Centre, School of Computer and Security Science, Edith Cowan University, Perth, Western Australia

Comments

7th Australian Information Security Management Conference, Perth, Western Australia, 1st to 3rd December 2009

Abstract

An examination of Information Security (IS) and Information Security Management (ISM) research in Saudi Arabia has shown the need for more rigorous studies focusing on the implementation and adoption processes involved with IS culture and practices. Overall, there is a lack of academic and professional literature about ISM and more specifically IS culture in Saudi Arabia. Therefore, the overall aim of this paper is to identify issues and factors that assist the implementation and the adoption of IS culture and practices within the Saudi environment. The goal of this paper is to identify the important conditions for creating an information security culture in Saudi Arabian organizations. We plan to use this framework to investigate whether security culture has emerged into practices in Saudi Arabian organizations.

DOI

10.4225/75/579850d331b4d