• The Journal of Society for e-Business Studies
• /
• v.20 no.3
• /
• pp.47-58
• /
• 2015

Recently, new information security vulnerabilities have proliferated with the convergence of information security environments and information and communication technology. Accordingly, new types of cybercrime are on the rise, and security breaches and other security-related incidents are increasing rapidly because of security problems like external cyberattacks, leakage by insiders, etc. These threats will continue to multiply as industry and technology converge. Thus, the main purpose of this paper is to design and present security subjects in order to train professional security management talent who can deal with the enhanced threat to information. To achieve this, the study first set key information security topics for business settings on the basis of an analysis of preceding studies and the results of a meeting of an expert committee. The information security curriculum taxonomy is developed with reference to an information security job taxonomy for domestic conditions in South Korea. The results of this study are expected to help train skilled security talent who can address new security threats in the future environment of industrial convergence.

• Journal of Digital Convergence
• /
• v.14 no.12
• /
• pp.441-449
• /
• 2016

Today, as a daily routine such as administration/finance is operated under information system and various cyber crime against national, public, and private institutions happen, demand for information security manpower is increasing. Hence, Ministry of Education has formed an Institute of Information Security Education for the Gifted to early discover talent in the field of information security and train professional personnel with specialty and ethics in 4 universities of country in 2014. But the nascent Institute of Information Security Education for the Gifted lack systematic analyses compared to Institute of Mathematics and Science Education for the Gifted that has existed from a long time ago. In this paper, we analyze the state of the Institute of Information Security Education for the Gifted in three parts: operation, selection, education and suggest an improvement to build a practical program for effective operations and education.

• 월간낙농육우
• /
• v.35 no.9
• /
• pp.121-124
• /
• 2015

현재 전국 64개 도시에 790여 매장을 직영하면서 하루 평균 매장 방문객 수만 20만여명에 달하는 스타벅스커피코리아. 세계 최대의 커피전문점 스타벅스의 국내 법인으로, 올해 한국낙농육우협회와 함께 국내산 흰우유 소비촉진을 위해 다양한 이벤트를 진행하고 있다. 국내에 새로운 커피문화를 소개하는 것은 물론, 국내 협력업체와 공생 관계를 유지하고 글로벌 인재를 양성하며 환경보호 및 지역사회 참여 등 국내 경제 및 지역시회 발전에 기여하고 있는 스타벅스커피코리아의 이석구 대표를 만나봤다.

• Journal of the Korea Institute of Information Security & Cryptology
• /
• v.28 no.3
• /
• pp.695-706
• /
• 2018

In recent years, industrial convergence centered on ICBM (internet of things (IoT), cloud, big data, mobile) has been experiencing rapid development in various fields such as agriculture and the financial industry. In order to prepare for cyber threats, one of the biggest problems facing the convergence industry in the future, the development of the industry must proceed in tandem with a framework of information security. In this study, we analyze the details of the current industrial development policy and related information protection policies using cross impact analysis and present policy priorities through the expert questionnaire. The aim of the study was to clarify the priorities and interrelationships within information security policy as a first step in suggesting effective policy direction. As a result, all six information security policy tasks derived from this study belong to key drivers. Considering the importance of policies, policies such as improving the constitution of the security industry and strengthening of support, training of information protection talent, and investing in the information security industry need to be implemented relatively first.

• The Journal of Korean Association of Computer Education
• /
• v.17 no.6
• /
• pp.71-80
• /
• 2014

Accidents for information disclosure occurred in a steady increase, so many information security department has been established recently. But there was a lack of differentiation between department of IT department and they cannot train appropriate students for companies. This research examined the Workforce framework and competencies, the related research for improving information security curriculum. And then this research analyzed status and characteristics of the curriculum to the information security department, based on the Workforce framework and competencies presented by NICE. The result of the research confirmed that the current curriculum mainly consists of courses dealing with development of products that secure information, so the curriculum is needed to improve by focusing on workforce framework competencies. The result will be utilized as fundamental research for improving the curriculum of information security major in the future.

• Review of KIISC
• /
• v.26 no.1
• /
• pp.68-78
• /
• 2016

최근 세계적으로 발생하고 있는 사이버 공격, 안전 불감증 등의 인재 및 지진, 태풍 등 자연재해로 인한 피해가 증가하고 있는 상황이나 이에 대한 예방, 대비, 대응 및 복구에 대한 일련의 체계적인 활동은 미흡한 실정이다. 본 논문에서는 업무 연속성 계획(BCP : Business Continuity Planning)의 정의 및 필요성에 대해 소개하고, 효율적인 BCP에 대해 알아보기 위해 국내외 BCP 현황에 대해 조사 연구하였다. 미국, 영국, 호주, 일본은 각각 정부기관 차원의 체계적인 관리를 통한 시스템을 마련하고 있는 바 그 효과에 대해 검토하여 우리나라 BCP 현황과 비교 분석한 후 우리나라 기업에 효율적으로 적용할 수 있는 방안을 모색해 보고자 한다.

• The Journal of Society for e-Business Studies
• /
• v.17 no.3
• /
• pp.129-147
• /
• 2012

In this paper, we research on the personal information protection system in smart-phone based on mobile environment. This paper proposes the enhanced personal location privacy mechanism in location-based service environment of a smart phone operating system(iOS, Android) for the relevant regulations on location-based protection and utilization. Also, the result verified that possibility on a self-control mechanism of the personal information protection system's subject in the window platform throughout the experiment. Therefore, this study have drew a method that user positively can cope with a protection of personal location information by having a user's self-control method in the system under development or done by illegal location-based service providers and illegal application developer.

• Knowledge Management Research
• /
• v.21 no.3
• /
• pp.197-213
• /
• 2020

This study analyzed the impact of information security service company certification on financial performance. The purpose of this study was to analyze the effect of the "Information Security Service Certification Company" system from a financial point of view for information security service certified & non-certified companies, and listed & unlisted companies. From a financial point of view, performance analysis was conducted using two-way ANOVA on sales, operating profit, and profit rate. This study verified whether there is a difference in management performance between an information security service certified company and an uncertified company. In the financial performance indicators of sales, operating profit, and profit rate, the information security service certification system showed an impact on financial performance because the information security service certification company showed better management performance than the uncertified company. The implications of this study are that the empirical performance analysis from the financial point of view of the information security service certified company system can be used as a basis for negative regulatory policies to revitalize the information security industry in the future, contributing to the growth of information security companies with excellent growth potential.

• Knowledge Management Research
• /
• v.22 no.4
• /
• pp.157-172
• /
• 2021

Information security companies were established in earnest from the mid-late 1990s to early 2000s, far shorter than other national key industries. Nevertheless, the information security industry has made rapid progress. It is expected that the proportion of the information security industry will increase rapidly with the development of advanced technology along with the 4th industrial revolution. As COVID-19, which occurred at the end of 2019, spreads around the world in 2020, non-face-to-face services and digital transformation are accelerating, and cyber threats to users are also increasing. However, there are limitations in responding to new Cyber Security threats due to the shortage of information protection manpower, insufficient security capabilities of domestic companies, and the narrow domestic information protection market. This study examines the external environmental factors of information security companies such as government information protection system operation, government influence, government support, partnership between information security companies, and internal environmental factors such as top management support, financial status, human resources, organizational capability, This study was conducted using empirical data to analyze whether it affects innovation capability and whether organizational capability and innovation capability affect financial and non-financial performance. The results of this study can be used as basic data to suggest policies and implications for information security, and to strengthen the competitiveness of the information security industry.

• The Journal of Korean Association of Computer Education
• /
• v.21 no.1
• /
• pp.1-10
• /
• 2018

Korea shifted the focus to competency-based curriculums in the revised national curriculum of 2015, and emphasized training creative convergence talents through informatics education. The informatics education curriculum included information culture literacy as a core competence so that the learners can gain knowledge of information technology-based information ethics and make ethical judgment and practice ethics. This study analyzed the elements related to information culture literacy in the informatics curriculums of the US, the UK, India, Japan, Australia and Germany for the purpose of providing implications with regard to the composition of elements that can foster information culture literacy. According to the analysis results, first, the term information culture literacy was included only in the informatics education curriculum of Korea. Second, the elements common to all countries are (personal) information protection, information security and copyright. Third, Korea's information society and career, India's avoidance of injuries, Germany's protection of health and environment were found only in the curriculums of respective countries. This study is significant in that it provided the orientation of improving the elements for fostering information culture literacy based on the results of analyzing overseas informatics curriculums.