InationSecurityAwareness資訊安全認知

1、1information security awareness資訊安全認知資訊安全認知22elicitation of research topicsinformation securityawarenessnational informationsecurity projecting informationsecurity project33information security platforminformation technology, learning, and performance journal 44problems why ing needs the information

2、 security platform ? what are the differences between e-learning and information security platform ?55systems development ininformation systems researchjay f. nunamaker, jr., minder chen, and titus d. m. purdinjournal of management information systems i winter 1990-91, vol. 7, no, 3, pp. 89-106.66th

3、e integrated framework of information security awarenessinformation security awareness platformevaluation of organizationalinformation security awareness materials and methods for information security awareness77situation awareness 決策行為成效情 境 認 知 未來預測 level 3 現(xiàn)況了解 level 2元素知覺level 1系統(tǒng)功能介面設(shè)計壓力/工作負荷複雜度

4、自動化目標預期環(huán)境狀況 能力 經(jīng)驗 訓練個人因素作業(yè)或系統(tǒng) 因素 長期記憶自動性資訊處理機制endsley, m.r. and garland d.j (eds.) (2000)situation awareness analysis and measurement. mahwah , nj：lawrence erlbaum associates, 88research designwhat is your opinion?99the evaluation form of information security awareness part i: laws and regulations1.

5、1 laws and regulations 1.1.1 i understand the meaning of the basic policy structure for it security in the federal government in the concept of laws and regulations.1.2 policies and procedures1.2.1 i understand the meaning of it security safeguards are intended to achieve specific control objectives

6、 in the concept of policies and procedures.1.2.2 i understand the meaning of procedures define the technical and procedural safeguards that have been implemented to enforce the specified policies in the concept of policies and procedures.1010nist sp800-16abcs of information technology securityaasset

7、s something of value requiring protection (hardware, software, data, reputation)bbackup the three most important safeguards backup, backup, backupccountermeasures and controls prevent, detect, and recover from security incidentsddaa and other officials manage and accept risk and authorize the system to operateeethics the body of rules that governs an individuals behavior.ffirewalls and separation of duties minimize the potential for “incident encroachment”ggoals confidentiality, integrity, and availability (cia)1111research designwhat is your opinion?1212conclusion research topics elicite