Information systems security management maturity model for electronic commerce small medium industries and enterprises (smi/e) using technology, organization and environment framework / Azah Anir Binti Norman

Today, the Information Systems Security Management (Information Systems Security Management (ISSM)) maturity framework has been recognized and accepted by businesses globally. This ISSM maturity phenomenon has shifted many business perspectives on the importance of security management towards bus...

Full description

Saved in:
Bibliographic Details
Main Author: Norman, Azah Anir
Format: Thesis
Published: 2014
Subjects:
Online Access:http://studentsrepo.um.edu.my/4627/1/ISSMthesis_AZAH2014.pdf
http://studentsrepo.um.edu.my/4627/
Tags: Add Tag
No Tags, Be the first to tag this record!
id my.um.stud.4627
record_format eprints
institution Universiti Malaya
building UM Library
collection Institutional Repository
continent Asia
country Malaysia
content_provider Universiti Malaya
content_source UM Student Repository
url_provider http://studentsrepo.um.edu.my/
topic Q Science (General)
T Technology (General)
spellingShingle Q Science (General)
T Technology (General)
Norman, Azah Anir
Information systems security management maturity model for electronic commerce small medium industries and enterprises (smi/e) using technology, organization and environment framework / Azah Anir Binti Norman
description Today, the Information Systems Security Management (Information Systems Security Management (ISSM)) maturity framework has been recognized and accepted by businesses globally. This ISSM maturity phenomenon has shifted many business perspectives on the importance of security management towards business information systems. The development of current ISSM maturity framework, based on tried-and-true practices by security experts, have also expanded many issues in the IS research scenario among which are: (i) lack of flexible framework: the current framework developed and designed to suit brick and mortar traditional business, but not for e-commerce that has a volatile structure; (ii) lack of theory supported framework: the current ISSM framework is developed using tried-and-true practices of experts’ experiences rather than based on excepted theories. The main objective of this research is to address these two issues. The research aim is to construct an ISSM maturity model to suit e-commerce using Technology, Organization and Environment framework (Technology-Organization-Environment Framework (TOE)), DeLone and McLean Information System (IS) Success Factors, Diffusion of Innovation Theory (Diffusion of Innovation Theory (DOI)) and Ein-Dor Organizational Factors. The IS theory, IS model, IS framework and IS organization factors were selected to help develop a flexible and theoretically-based ISSM maturity model for the benefit of Small Medium Industries/Enterprises (SMI/Es) that are involved in e-commerce. This study employs a mixed-method research using the sequential mix-method procedure to predict the conceptual relationship: (i) the research quantitative phase adopts a structural equation modelling (Structural Equation Modelling (SEM)) technique using Partial Least Square iv (Partial Least Square (PLS)) method, (ii) semi-structured interviews with the selected Small Medium Industry/Enterprise (SMI/E)s business Chief Executives Officers (Chief Executive Officer (CEO)s) and business owners that are involved in e-commerce. The results show high reliability of predicted variables with minimal reading of reliability score of more than 0.85, displaying average variance extracted (Average Variance Extracted (AVE)) exceeding 0.5, indicating adequate convergent validity of all the predicted variables developed in the conceptual framework. The predicted relationship was proved to be significant with the score of 50.4% showing the high influences of latent variables discussed in this ISSM maturity research. The findings show three significant influences in ISSM maturity in e-commerce (i) technology which are the technology usage, compatibility, complexity, relative advantage and technology availability, (ii) organization including the human resources, formal and informal linking structures and the communication process and (iii) the environment of which consisted of user satisfaction, government regulations, technology support characteristics, industry characteristics and market structure. Based on both quantitative and qualitative results, four quadrant of ISSM maturity were presented. These quadrants were then organized to construct the ISSM maturity model. The research contributes to the body of knowledge in twofolds: practically and academically whereby (i) the research contributed to the development of theoretically-based ISSM maturity model for SMI/E involved in the e-Commerce, and (ii) the research justified the theoretical consideration (based on the selected IS theory, IS framework, IS model and IS factors) which formed the conceptual research framework of this thesis. This research has successfully answered all research questions where it deduced the ISSM maturity factors and described the relationship between identified factors, hence conclusively build the ISSM maturity model.
format Thesis
author Norman, Azah Anir
author_facet Norman, Azah Anir
author_sort Norman, Azah Anir
title Information systems security management maturity model for electronic commerce small medium industries and enterprises (smi/e) using technology, organization and environment framework / Azah Anir Binti Norman
title_short Information systems security management maturity model for electronic commerce small medium industries and enterprises (smi/e) using technology, organization and environment framework / Azah Anir Binti Norman
title_full Information systems security management maturity model for electronic commerce small medium industries and enterprises (smi/e) using technology, organization and environment framework / Azah Anir Binti Norman
title_fullStr Information systems security management maturity model for electronic commerce small medium industries and enterprises (smi/e) using technology, organization and environment framework / Azah Anir Binti Norman
title_full_unstemmed Information systems security management maturity model for electronic commerce small medium industries and enterprises (smi/e) using technology, organization and environment framework / Azah Anir Binti Norman
title_sort information systems security management maturity model for electronic commerce small medium industries and enterprises (smi/e) using technology, organization and environment framework / azah anir binti norman
publishDate 2014
url http://studentsrepo.um.edu.my/4627/1/ISSMthesis_AZAH2014.pdf
http://studentsrepo.um.edu.my/4627/
_version_ 1738505692605579264
spelling my.um.stud.46272015-02-05T03:11:26Z Information systems security management maturity model for electronic commerce small medium industries and enterprises (smi/e) using technology, organization and environment framework / Azah Anir Binti Norman Norman, Azah Anir Q Science (General) T Technology (General) Today, the Information Systems Security Management (Information Systems Security Management (ISSM)) maturity framework has been recognized and accepted by businesses globally. This ISSM maturity phenomenon has shifted many business perspectives on the importance of security management towards business information systems. The development of current ISSM maturity framework, based on tried-and-true practices by security experts, have also expanded many issues in the IS research scenario among which are: (i) lack of flexible framework: the current framework developed and designed to suit brick and mortar traditional business, but not for e-commerce that has a volatile structure; (ii) lack of theory supported framework: the current ISSM framework is developed using tried-and-true practices of experts’ experiences rather than based on excepted theories. The main objective of this research is to address these two issues. The research aim is to construct an ISSM maturity model to suit e-commerce using Technology, Organization and Environment framework (Technology-Organization-Environment Framework (TOE)), DeLone and McLean Information System (IS) Success Factors, Diffusion of Innovation Theory (Diffusion of Innovation Theory (DOI)) and Ein-Dor Organizational Factors. The IS theory, IS model, IS framework and IS organization factors were selected to help develop a flexible and theoretically-based ISSM maturity model for the benefit of Small Medium Industries/Enterprises (SMI/Es) that are involved in e-commerce. This study employs a mixed-method research using the sequential mix-method procedure to predict the conceptual relationship: (i) the research quantitative phase adopts a structural equation modelling (Structural Equation Modelling (SEM)) technique using Partial Least Square iv (Partial Least Square (PLS)) method, (ii) semi-structured interviews with the selected Small Medium Industry/Enterprise (SMI/E)s business Chief Executives Officers (Chief Executive Officer (CEO)s) and business owners that are involved in e-commerce. The results show high reliability of predicted variables with minimal reading of reliability score of more than 0.85, displaying average variance extracted (Average Variance Extracted (AVE)) exceeding 0.5, indicating adequate convergent validity of all the predicted variables developed in the conceptual framework. The predicted relationship was proved to be significant with the score of 50.4% showing the high influences of latent variables discussed in this ISSM maturity research. The findings show three significant influences in ISSM maturity in e-commerce (i) technology which are the technology usage, compatibility, complexity, relative advantage and technology availability, (ii) organization including the human resources, formal and informal linking structures and the communication process and (iii) the environment of which consisted of user satisfaction, government regulations, technology support characteristics, industry characteristics and market structure. Based on both quantitative and qualitative results, four quadrant of ISSM maturity were presented. These quadrants were then organized to construct the ISSM maturity model. The research contributes to the body of knowledge in twofolds: practically and academically whereby (i) the research contributed to the development of theoretically-based ISSM maturity model for SMI/E involved in the e-Commerce, and (ii) the research justified the theoretical consideration (based on the selected IS theory, IS framework, IS model and IS factors) which formed the conceptual research framework of this thesis. This research has successfully answered all research questions where it deduced the ISSM maturity factors and described the relationship between identified factors, hence conclusively build the ISSM maturity model. 2014 Thesis NonPeerReviewed application/pdf http://studentsrepo.um.edu.my/4627/1/ISSMthesis_AZAH2014.pdf Norman, Azah Anir (2014) Information systems security management maturity model for electronic commerce small medium industries and enterprises (smi/e) using technology, organization and environment framework / Azah Anir Binti Norman. PhD thesis, University Malaya. http://studentsrepo.um.edu.my/4627/
score 13.211869