DOI QR코드

DOI QR Code

A Study on the Measurement Method of Personal Information Protection Investment Performance

개인정보보호투자의 성과측정방안에 관한 연구

  • 김영일 (중앙대학교 정보시스템학과) ;
  • 이재훈 (중앙대학교 일반대학원 경영학과)
  • Received : 2012.11.08
  • Accepted : 2012.12.10
  • Published : 2013.01.31

Abstract

Personal information protection has become one of the most impending business issues because leakage of personal information can cause tremendous financial losses and image degradation. Consequently, personal information protection initiatives have been recognized widely in business. To invigorate personal information protection investments, performance measurement method such as cost benefits analysis or qualitative analyses are needed, which have not been studied enough in the previous studies. This study proposes a performance measurement model which can include quantitative and qualitative analyses in the context of personal information protection investments. A comparative analysis has been performed on security investment and IT investment performance measurements, which leads to choose the WiBe method (developed by the German Interior Ministry), considering the privacy characteristics and the method's applicability. In particular, the quantitative effect measured how proactive threat assessment based on the way according to the nature of the businesses and organizations of privacy and possible investment decisions. This study proposes the 16 performance indicators, which turn out to be meaningful in terms of their materiality and feasibility by conducting focus group interviews of 25 experts on personal information protection.

Keywords

Personal information protection investments performance measurement;Cost benefit analysis;WiBe;Information security investments performance measurement;IT investments performance measurement

Acknowledgement

Supported by : 중앙대학교