Organisational barriers and their relationship to the effective use of information system audit trails

Author

Michael Hicks

Date of Award

1-1-2006

Document Type

Thesis - ECU Access Only

Publisher

Edith Cowan University

Degree Name

Master of Science

School

School of Computer and Security Science

Faculty

Faculty of Computing, Health and Science

Abstract

Audit trails are important asa detection and monitoring mechanism for unethical or unauthorised behaviour from internal, as well as external users. In addition, they can be used to demonstrate a proof of business process or as an evidentiary record to assess the integrityof an information system. Their effective use is promoted as being an essential component of a well-balanced and complete security policy. Despite the widespread acknowledgrnent of the importance of audit trails, surveys have repeatedly shown they are often neglected in terms of both the degree of implementation and effectiveness. This study explores the evidence that suggests that organisational issues, rather than technical problems may be the cause of deficiencies in audit trail effectiveness. Organisational barriers identified in current and prior studies include, lack of appropriate training, lack of comprehensive security policies and procedures, and an absence of IT staff recruitment policy.

Recommended Citation

Hicks, M. (2006). Organisational barriers and their relationship to the effective use of information system audit trails. Edith Cowan University. Retrieved from https://ro.ecu.edu.au/theses/335