• Informatization Policy
• /
• v.25 no.3
• /
• pp.95-115
• /
• 2018

This study aims to examine organization members' intention to violate security policies based on the Person-Environment Fit Model. This study investigated the effect of the relationship between organizational security environment and the individual security value on the intention of organizational security policy violation. The security environments are classified into the organizational information security culture and peers' behavior of security compliance, while the personal values are classified into reconstructing the conduct, distorting the consequence, and devaluing the organization as presented in the moral disengagement theory. Based on the concept of the moral disengagement theory, we measured the individual security values as a second order factor. This study found that the information security culture had a statistically significant impact on devaluing the organization, but did not have as much impact on reconstructing the conduct and distorting the consequence. Peers' behavior of security compliance had a significant impact on reconstructing the conduct, distorting the consequence and devaluing the organization, all of which also had relevant impact on the organizational members' intention of security policy violation.This study measured a persons' perception on security policy breach by presenting scenarios of password sharing that is common in many organizations. This study is expected to make practical contributions, as it deals with challenges that many organizations are actually faced with.

• Journal of Digital Convergence
• /
• v.15 no.8
• /
• pp.137-144
• /
• 2017

Recently, cyber resilience has emerged as an important concept, recognizing that there is no perfect security. However, domestic researches on cyber resilience are insufficient. In this study, the 22 indicators for cyber resilience assessment were initially developed by the literature survey and discussions with security experts. The developed indicators are reviewed using the Focus Group Interview method in terms of materiality and feasibility of the indicators. This study derived meaningful and useful indicators for the assessment of cyber resilience, and it is expected to be used as a foundation for the future cyber resilience studies. In order to generalize and apply the results of this study in practice, it is necessary to carry out quantitative researches in the future.

• Convergence Security Journal
• /
• v.23 no.5
• /
• pp.231-238
• /
• 2023

The purpose of this paper is to determine the extent to which job satisfaction affects organization commitment and organization performance among industrial security personnel. To this end, we attempted to conduct a four-week survey from August 28 to September 22, 2023, targeting about 150 workers working as industrial security guards in the field. According to the survey, the variables were comprised of "first, job satisfaction, second, organization commitment and third, organization performance" and based on this, three research hypotheses were proposed. After confirming that the internal consistency of each measurement item was satisfied, discriminant validity and conceptual reliability were calculated, and the discriminant validity of each variable was verified. As a result of the analysis, after conducting regression analysis to verify the research model, the results show that among the three research hypotheses, "Job Satisfaction ⇨ Organization Commitment, Job Satisfaction ⇨ Organization Performance" was found to be statistically significant and was adopted. We calculated that "Organization Commitment ⇨ Organization Performance" was not significant and was rejected.

• Review of KIISC
• /
• v.31 no.5
• /
• pp.5-12
• /
• 2021

코로나19 팬데믹은 현실뿐만 아니라 사이버 공간에도 지대한 영향을 미쳤다. 재택근무와 비대면(온라인) 회의 뿐만 아니라 온라인 게임/쇼핑과 스트리밍 서비스 등과 같이 네트워크를 활용한 서비스의 이용자가 급증하였으며, 이로 인해 사이버 공간은 더욱 활성화되고 확장되었다. 그러나 사이버 공간의 확장은 이를 대상으로 하는 사이버 공격들도 함께 증가시켰으며, 그 피해규모 또한 증가하고 있어 대응방안 마련이 매우 시급한 상황이다. 본 논문에서는 코로나19 팬데믹 영향에 따른 사이버공격 동향을 살펴보고, 실제 사이버위협을 탐지·대응하는 보안관제, 침해대응 실무현장에서 발생하는 사이버위협을 분석해 사이버위협 동향 변화를 확인해 본다. 또한, 대응기술로서 인공지능과 설명가능 인공지능 기반 정보보호 연구·개발에 대해 소개한다.

• Convergence Security Journal
• /
• v.14 no.4
• /
• pp.73-84
• /
• 2014

As the society turns into more of an information an technology centric society, the importance of information security is being increased these days. Recently, as the number of leaking accidents of personal information and valuable industrial technology is on the rise, every field of industry endeavors to come up with a security solution. In particular, since defense industry is a field where it establishes national defense power that is essential of national security, it requires higher standards of security solutions than any other ordinary fields of industry. According to Defense Industry Security Work Instructions, defense industry firms from security organizations and employ a security worker corresponding to the firm's scale and conditions. In an environment where essential information and technology are stored and managed in information and communication system or storing media, the duty and role of IT security workers are crucial. However, there is a shortage of systematic analysis on the work of IT security workers and development of curriculum to enhance their professionalism. Thus DACUM process, a job analysis technique, was used to identify IT Security workers' duties and responsibilities and verify the validity and credibility of the deducted results from the survey. The findings of this study will help in development of IT security duty in defense industry and can be used as baseline data for the development of curriculum and amendments of related regulations.

• Korean Security Journal
• /
• no.9
• /
• pp.201-235
• /
• 2005

This study is designed to contribute for development of Private Security Business by fact-finding in instruction and training of private security guard serviced in this realm and domestic and foreign guard service and modeling effective and rational instruction and training program based on drawn problem. For this study, basically I collected and analyzed documents, theses, and papers of the inside and outside of the country. For practical use of data, I used materials of private security related institutes and police agency. And for private security educating training programs of the inside and outside of the country, I collected materials on internet, and with the help of police agency and interpol. For korean private security company's educating training programs, I made a study with the interview of private security company's businessmen. This study's conclusion is as follows. In a domestic private security enterprise, when set theory instruction minimize instruction and training program and must set up instruction and training program as practical affairs center enemy instruction, and theory instruction must be composed for instruction me that it is connected to practical affairs instruction too. The instruction course of private security guard instruction and training program composed with a security outline, a security plan, an information-gathering, civilian expenses, a security way, terror and terrorism, a related law, security trial, electronic security, a security analysis technique, company introduction, instruction and training program about a professional tube with theory instruction. Practical affairs instruction composed with the selection and a preventive security, close contact attendance security, vehicle security, security driving the security martial arts and self-protection liquor, first aid, security equipment, a gun and shooting, a security protocol, customer satisfaction, facilities security and expenses, a fire fighting instruction, teamwork training, explosive and a dangerous substance, physical strength, a documentation practical affairs, service, instruction and training program about foreigh language instruction.

• Proceedings of the Korean Reliability Society Conference
• /
• 2000.11a
• /
• pp.235-241
• /
• 2000

가스기기 안전장치 및 조리기구에 중요한 안전장치인 Gas Sensor를 가속시험을 이용하여 신뢰성을 분석하였다. 시험을 실시한 결과 GAS SENSOR의 Heater는 인가전압에 따른 특성 변화가 아레니우스 모델과 어링모델이 잘 일치함을 보여주었다. 즉, Heater선의 전압은 발열온도에 비례하고 있음을 알 수 있었다. 이번 실험을 통하여 STRESS에 비례적으로 특성이 변하는 제품은 설계단계에서 수명에 영향을 주는 잠재적 취약부를 단시간에 효과적으로 끌어내어 개선할 수 있는 기술임을 입증하였으나 다양한 STRESS의 복합적인 인자에 의하여 변화되는 특성을 분석하여 실질적으로 현장실무에 활용을 위해서는 많은 기술적 보안이 필요할 것으로 판단된다.

• 한국IT서비스학회:학술대회논문집
• /
• 2010.05a
• /
• pp.542-546
• /
• 2010

1999년 7월에 국내에 도입된 인터넷 뱅킹 서비스는 서비스 제공 은행들의 계속적인 투자와 보안, 결제시스템의 보완, 이용자들의 확산으로 빠르게 성장하고 있다. 효과적인 웹 사이트 관리는 인터넷 비즈니스의 성패를 좌우한다. 따라서 본 연구는 국내 은행 웹사이트의 인터넷 뱅킹 서비스에 대한 진단 및 평가를 통하여 효율적으로 인터넷 뱅킹을 수행할 수 있도록 지원코자 하는 실무적 목적을 연구의 출발점으로 삼았다.

• Korean Security Journal
• /
• no.39
• /
• pp.355-386
• /
• 2014

Current business environment asks the fundamental changes about business security. The essences of these changes are that the security management of today's global business is important task of managers and the security practitioner is professional who needs very specialized education and training with business thinking. Rapid process of globalization of global village tore down the business limit that was restricted on the geological areas' limitation. Rapid business environments' change that is driving depends on development of science and technology with globalization needs new paradigm to keep business continuity. With the process of globalization, Korea, which importance is gradually increasing in the national economy, has trade dependent economic system, which keeps power of national economy through trade, so Korean economic tendency is accelerating. To keep competitiveness in global market, new strategy that is different with existing domestic business management is necessary. That is, capacity of coping with outside risk in domestic business management is established in some degree, but business activities in foreign countries faces at numerous unexpected risks that differ from country to country such as difference with the custom, changes of corporate governance etc. To cope with these new risks effectively, new paradigm for business risk is necessary. Especially, flexibility of thinking like new paradigm is necessary to cope with new security risk effectively. To cope with security risk that occurs in the new business environment effectively and competes against international company in global market, company management and members' changes of cognition about security and innovative changes in security policy is necessary. In the basement of these changes, there is expansion of business security tasks, improvement of report line, enhancement of professionalism and status of security officers, variation of hands-on workers and increasing of investment to the security etc.

• Journal of the Korea Society of Computer and Information
• /
• v.25 no.1
• /
• pp.151-157
• /
• 2020

This study explored the moderating effects of security ability on the influence of privacy concerns on internet activity using Korea media panel survey data. To this end, we applied between-subjects factorial design between 2 (privacy concern high / low) × 2 (security ability high / low) groups and compared five types of internet activity among four groups by variance analysis. As a result, privacy concerns have a main effect on internet activity, and security ability have a moderating role in this relationship. Despite the privacy concerns, people do their internet activities in order to enjoy the benefit from the internet. This study have academic implication in that it focus on the issue of privacy paradox in terms of the type of internet activity. In addition, practical implications are that, in order to activate online activities of individuals in an internet-connected society, efforts for enhancing their security abilities are necessary.