Exploring the Influence of Organizational, Environmental, and Technological Factors on Information Security Policies and Compliance at South African Higher Education Institutions, with a Focus on Implications for Biomedical Research

Exploring the Influence of Organizational, Environmental, and Technological Factors on Information Security Policies and Compliance at South African Higher Education Institutions, with a Focus on Implications for Biomedical Research

Globally, concerns over information security vulnerabilities are growing exponentially, fuelled by several headline reports of data breach incidents, which increase in size with each occurrence. On the Africa continent, South Africa is ranked among the most ‘at-risk’ countries fo...

Full description

Bibliographic Details
Main Authors: Oluwafemi Peter Abiodun, Dominique Anderson, Alan Christoffels
Format: Article
Language:English
Published: MDPI AG 2020-03-01
Series:Proceedings
Subjects:
biomedical data
gdpr
information security and management
south african universities
toe framework
popia
Online Access:https://www.mdpi.com/2504-3900/45/1/2
id doaj-7862431a4cc242df852026d590239a1e
record_format Article
spelling doaj-7862431a4cc242df852026d590239a1e2020-11-25T02:01:59ZengMDPI AGProceedings2504-39002020-03-01451210.3390/proceedings2020045002proceedings2020045002Exploring the Influence of Organizational, Environmental, and Technological Factors on Information Security Policies and Compliance at South African Higher Education Institutions, with a Focus on Implications for Biomedical ResearchOluwafemi Peter Abiodun0Dominique Anderson1Alan Christoffels2South African Medical Research Council Bioinformatics Unit, South African National Bioinformatics Institute, University of the Western Cape, Bellville 7535, South AfricaSouth African Medical Research Council Bioinformatics Unit, South African National Bioinformatics Institute, University of the Western Cape, Bellville 7535, South AfricaSouth African Medical Research Council Bioinformatics Unit, South African National Bioinformatics Institute, University of the Western Cape, Bellville 7535, South AfricaGlobally, concerns over information security vulnerabilities are growing exponentially, fuelled by several headline reports of data breach incidents, which increase in size with each occurrence. On the Africa continent, South Africa is ranked among the most ‘at-risk’ countries for information security vulnerabilities, having lost approximately fifty billion rands to cybercrime in 2014. South Africa is currently considered to be the most cybercrime-targeted country in Africa. Worldwide, cyber vulnerability incidents greatly affect the education sector, due to the fact that this sector holds more Personal Identifiable Information (PII) than many other sectors. The PII ranges from (but is not limited to) ID numbers and financial account numbers to biomedical research data. In response to growing threats in South Africa, a similar regulation strategy to the European Union General Data Protection Regulation (GDPR), called the Protection of Personal Information Act (POPIA) will be implemented, with a view to mitigating cybercrime and information security vulnerabilities. The extent to which African institutions, and specifically the South African universities, have embraced and respond to these two information security regulations (GDPR and POPIA) is not yet clear and will be a matter of great importance for biomedical researchers. This research study aims to conduct a qualitative exploratory analysis of information security management across three universities in South Africa, by using a Technology, Organizational, and Environmental (TOE) model to investigate the factors which may influence the effectiveness of information security measures. This study is poised to make a significant contribution to the development of a Management Model for security practitioners and a framework for information management of biomedical data.https://www.mdpi.com/2504-3900/45/1/2biomedical datagdprinformation security and managementsouth african universitiestoe frameworkpopia
collection DOAJ
language English
format Article
sources DOAJ
author Oluwafemi Peter Abiodun
Dominique Anderson
Alan Christoffels
spellingShingle Oluwafemi Peter Abiodun
Dominique Anderson
Alan Christoffels
Exploring the Influence of Organizational, Environmental, and Technological Factors on Information Security Policies and Compliance at South African Higher Education Institutions, with a Focus on Implications for Biomedical Research
Proceedings
biomedical data
gdpr
information security and management
south african universities
toe framework
popia
author_facet Oluwafemi Peter Abiodun
Dominique Anderson
Alan Christoffels
author_sort Oluwafemi Peter Abiodun
title Exploring the Influence of Organizational, Environmental, and Technological Factors on Information Security Policies and Compliance at South African Higher Education Institutions, with a Focus on Implications for Biomedical Research
title_short Exploring the Influence of Organizational, Environmental, and Technological Factors on Information Security Policies and Compliance at South African Higher Education Institutions, with a Focus on Implications for Biomedical Research
title_full Exploring the Influence of Organizational, Environmental, and Technological Factors on Information Security Policies and Compliance at South African Higher Education Institutions, with a Focus on Implications for Biomedical Research
title_fullStr Exploring the Influence of Organizational, Environmental, and Technological Factors on Information Security Policies and Compliance at South African Higher Education Institutions, with a Focus on Implications for Biomedical Research
title_full_unstemmed Exploring the Influence of Organizational, Environmental, and Technological Factors on Information Security Policies and Compliance at South African Higher Education Institutions, with a Focus on Implications for Biomedical Research
title_sort exploring the influence of organizational, environmental, and technological factors on information security policies and compliance at south african higher education institutions, with a focus on implications for biomedical research
publisher MDPI AG
series Proceedings
issn 2504-3900
publishDate 2020-03-01
description Globally, concerns over information security vulnerabilities are growing exponentially, fuelled by several headline reports of data breach incidents, which increase in size with each occurrence. On the Africa continent, South Africa is ranked among the most ‘at-risk’ countries for information security vulnerabilities, having lost approximately fifty billion rands to cybercrime in 2014. South Africa is currently considered to be the most cybercrime-targeted country in Africa. Worldwide, cyber vulnerability incidents greatly affect the education sector, due to the fact that this sector holds more Personal Identifiable Information (PII) than many other sectors. The PII ranges from (but is not limited to) ID numbers and financial account numbers to biomedical research data. In response to growing threats in South Africa, a similar regulation strategy to the European Union General Data Protection Regulation (GDPR), called the Protection of Personal Information Act (POPIA) will be implemented, with a view to mitigating cybercrime and information security vulnerabilities. The extent to which African institutions, and specifically the South African universities, have embraced and respond to these two information security regulations (GDPR and POPIA) is not yet clear and will be a matter of great importance for biomedical researchers. This research study aims to conduct a qualitative exploratory analysis of information security management across three universities in South Africa, by using a Technology, Organizational, and Environmental (TOE) model to investigate the factors which may influence the effectiveness of information security measures. This study is poised to make a significant contribution to the development of a Management Model for security practitioners and a framework for information management of biomedical data.
topic biomedical data
gdpr
information security and management
south african universities
toe framework
popia
url https://www.mdpi.com/2504-3900/45/1/2
work_keys_str_mv AT oluwafemipeterabiodun exploringtheinfluenceoforganizationalenvironmentalandtechnologicalfactorsoninformationsecuritypoliciesandcomplianceatsouthafricanhighereducationinstitutionswithafocusonimplicationsforbiomedicalresearch
AT dominiqueanderson exploringtheinfluenceoforganizationalenvironmentalandtechnologicalfactorsoninformationsecuritypoliciesandcomplianceatsouthafricanhighereducationinstitutionswithafocusonimplicationsforbiomedicalresearch
AT alanchristoffels exploringtheinfluenceoforganizationalenvironmentalandtechnologicalfactorsoninformationsecuritypoliciesandcomplianceatsouthafricanhighereducationinstitutionswithafocusonimplicationsforbiomedicalresearch
_version_ 1724954585745850368

Similar Items