Organisational barriers and their relationship to the effective use of information system audit trails
Date of Award
Master of Science
School of Computer and Security Science
Faculty of Computing, Health and Science
Audit trails are important asa detection and monitoring mechanism for unethical or unauthorised behaviour from internal, as well as external users. In addition, they can be used to demonstrate a proof of business process or as an evidentiary record to assess the integrityof an information system. Their effective use is promoted as being an essential component of a well-balanced and complete security policy. Despite the widespread acknowledgrnent of the importance of audit trails, surveys have repeatedly shown they are often neglected in terms of both the degree of implementation and effectiveness. This study explores the evidence that suggests that organisational issues, rather than technical problems may be the cause of deficiencies in audit trail effectiveness. Organisational barriers identified in current and prior studies include, lack of appropriate training, lack of comprehensive security policies and procedures, and an absence of IT staff recruitment policy.
Hicks, M. (2006). Organisational barriers and their relationship to the effective use of information system audit trails. Retrieved from http://ro.ecu.edu.au/theses/335