University of Worcester Worcester Research and Publications
 
  USER PANEL:
  ABOUT THE COLLECTION:
  CONTACT DETAILS:

ATINER's Conference Paper Series SME2015-1749: What Attitude Changes Are Needed to Cause SMEs to Take a Strategic Approach to Information Security?

Henson, Richard and Garfield, Joy (2015) ATINER's Conference Paper Series SME2015-1749: What Attitude Changes Are Needed to Cause SMEs to Take a Strategic Approach to Information Security? In: 12th Annual International Conference on SΜΕ's, Entrepreneurship and Innovation: Management – Marketing – Economic - Social Aspects, 27th-30th July 2015, Athens, Greece. ISSN 2241 - 2891

[img]
Preview
Text (What Attitude Changes Are Needed to Cause SMEs to Take a Strategic Approach to Information Security?)
SME2015-1749.pdf - Published Version

Download (391kB) | Preview

Abstract

Spending on security in an SME usually has to compete with demands for hardware, infrastructure, and strategic applications. In this paper, the authors seek to explore the reasons why smaller SMEs in particular have consistently failed to see securing information as strategic year-on-year spending, and just regard as part of an overall tight IT budget. The authors scrutinise the typical SMEs reasoning for choosing to see non-spending on security as an acceptable strategic risk. They look particularly at possible reasons why SMEs tend not to take much notice of "scare stories" in the media based on research showing they are increasingly at risk, whilst larger businesses are taking greater precautions and become more difficult to penetrate. The results and their analysis provide useful pointers towards broader business environment changes that would cause SMEs to be more risk-averse and ethical in their approach to securing their own and their clients’ information.

Item Type: Conference or Workshop Item (Paper)
Additional Information:

This paper should be cited as follows:
Henson, R and Garfield,J.(2015). "What Attitude Changes Are Needed to Cause SMEs to Take a Strategic Approach to Information Security? ", Athens: ATINER'S Conference Paper Series, No: SME2015-1749.

Uncontrolled Keywords: SME's, information security, data protection legislation, economics of information security, information security management systems, ISO2700
Subjects: T Technology > T Technology (General)
Divisions: Academic Departments > Worcester Business School
Related URLs:
Copyright Info: Open Access article
Depositing User: Joy Garfield
Date Deposited: 12 Feb 2016 14:50
Last Modified: 12 Feb 2016 14:50
URI: https://eprints.worc.ac.uk/id/eprint/4147

Actions (login required)

View Item View Item
 
     
Worcester Research and Publications is powered by EPrints 3 which is developed by the School of Electronics and Computer Science at the University of Southampton. More information and software credits.