• Journal of the Korea Institute of Information Security & Cryptology
• /
• v.25 no.4
• /
• pp.915-920
• /
• 2015

The commitment of top management is still insufficient for information security even the core of information security governance is dependent on the leadership of top management. In this situation, information security committee can be a good way to vitalize the commitment of top management and its activities are essential for implementing information security governance. The purpose of this study is to test that information security committee affects implementing information security governance and security effect. For a empirical analysis, questionnaire survey was conducted and the PLS(Partial Least Square) was used to analyze the measurement and structural model. The study result shows that a hypothesis related value delivery is not accepted and it is required to study various methods about how the information security provides positive value to business.

• The Journal of Economics, Marketing and Management
• /
• v.10 no.6
• /
• pp.17-26
• /
• 2022

Purpose: This study analyzes advanced cases of overseas smart cities and examines policy implications related to the creation of smart cities in Korea. Research design, data, and methodology: Analysis standards were established through the analysis of best practices. Analysis criteria include Technology, Privacy, Security, and Governance. Results: In terms of technology, U-City construction experience and communication infrastructure are strengths. Korea's ICT technology is inferior to major countries. On the other hand, mobile communication, IoT, Internet, and public data are at the highest level. The privacy section created six principles: legality, purpose limitation, transparency, safety, control, and accountability. Security issues enable urban crime, disaster and catastrophe prediction and security through the establishment of an integrated platform. Governance issues are handled by the Smart Special Committee, which serves as policy advisory to the central government for legal system, standardization, and external cooperation in the district. Conclusions: Private technology improvement and participation are necessary for privacy and urban security. Citizens should participate in smart city governance.

• Journal of the Korea Institute of Information Security & Cryptology
• /
• v.28 no.5
• /
• pp.1259-1277
• /
• 2018

This study analyzes cyber security strategies, laws, organizations, and the roles of the ministries in the US, Germany, UK, Japan, China, and Korea and draws implications for establishing a practical and efficient next generation national cyber security governance. Under this goal, this study analyzes cyber security strategies, laws, organizations, and the roles of the ministries in the US, Germany, UK, Japan, China, and Korea and draws implications for establishing a practical and efficient next generation national cyber security governance. Based on the results of this analysis, this study suggests suggestions and directions for improvement of domestic cyber security governance.

• Asia pacific journal of information systems
• /
• v.24 no.4
• /
• pp.531-557
• /
• 2014

Although the area of information security planning and management has gained an increased attention, not much discussion was available on the role and the impact of the board members towards a firm's security management and governance decisions. In this research, we draw on corporate governance and the organizational demography literature to conduct an exploratory empirical study on the association between the board structure of a firm and the possibility of information security breaches. Our results show that the board size, the average age/tenure and the heterogeneity of age could reduce the possibility of security breaches while the proportion of independent directors and the heterogeneity of tenure could increase it. Our findings shed lights on the important role played by the board when managing information security risks in organizations.

• Journal of the Korea Convergence Society
• /
• v.6 no.4
• /
• pp.33-40
• /
• 2015

According to arriving convergence environment which can create new value-added converged between industry and ICT technology, It has made economic growth and improve the quality of life. However this convergence environment provide not only advantage but also various security problems resulting from generating converged security threats. For resolving this security problem, we need to approach to security problem in the integrated view not the fragmentary view which cover only technical approach. So This study developed security governance framework which can manage trustful security governance in multidimensional view which cover strategy, managerial/operational and technical view. Therefore this framework can construct trustful security management system which can help top management team to engage in security management directly and organizational member to perform security activities and have responsibility for themselves as suggesting single standard for security management.

• KIPS Transactions on Computer and Communication Systems
• /
• v.1 no.2
• /
• pp.103-108
• /
• 2012

Recently, IT Governance has been applied to business management environment. In this paper, we study business model that can minimize information security risk using IT governance in cloud computing environment. Especially, we propose the interaction model that link risk management for subject of information security governance. In our model, synergy means the effective, strategic and secure business support. And interaction analysis of BMIS's 4 elements and 6 dynamic interconnections is required. Therefore we propose interaction model which can link risk management based on COSO ERM or COBIT Risk IT Framework.

• International Journal of Computer Science & Network Security
• /
• v.21 no.6
• /
• pp.29-34
• /
• 2021

The article formulates the key characteristics and features of country models of corporate governance. It was revealed that all countries are characterized by a fairly high concentration of ownership, insider control; Key gaps in the implementation of corporate governance principles were found: transparency and disclosure of information, protection of shareholders' rights, gender diversity of boards of directors, implementation of recommendations on the share of independent directors; The criterion of countries' efficiency (total investments) was identified and recommendations for their improvement were developed.

• The Journal of the Convergence on Culture Technology
• /
• v.6 no.4
• /
• pp.633-642
• /
• 2020

The recent COVID-19 pandemic is threatening human life and well-being, causing pain that has not been experienced before. Human security was summoned again as a result of the COVID-19 pandemic. However, it is paradoxically a threat to human security due to its inherent limitations and authoritarian control model. This paper first raises the analytical rigor of the concept of human security, focusing on COVID-19. Based on this, the practical usefulness of human security is improved by constructing a practical model that reflects the human security issues raised in reality. In particular, we approach the COVID-19 pandemic not from a natural disaster, but from the perspective of an artificial catastrophe caused by immorality and division in the international community. At the same time, we propose a multilateralism governance model that reflects the perspective of emerging security in order to realize human rights, the fundamental value of human security, and quarantine, a practical task in a balanced way.

• The Journal of Society for e-Business Studies
• /
• v.18 no.1
• /
• pp.147-164
• /
• 2013

For the continuous information security governance, we have to focus on not just technical aspects like access control and DRM, but informal level management like information security(IS) behavior, culture, and personal value. But there are few informal level studies, while many formal level studies of IS governance or technical means. This study is an empirical test that how IS culture, normal beliefs, personal behavior and value affect employee's deviant behavior. And we define a lack of an awareness of value and importance on IS regulations in organizations as "Information Security Anomie" with the concept of anomie, a viewpoint on social organization.

• Journal of the Korean Geographical Society
• /
• v.39 no.6 s.105
• /
• pp.933-954
• /
• 2004

This paper considers critically the conceptual development of international environmental security, and to explore some limitations which seem to have made difficult the construction of regional environmental governance among North-East Asian countries. The recently emerging concept of environmental security has turned the traditional or realistic meaning of security to the neo-liberal and the political-economic one. On the basis of a reconsideration of these newly developed meanings of security, this paper has reviewed critically some work which have focused on the concepts of environmental regime and of environmental governance. To formulate a true environmental governance, it is suggested that we need a theoretical analysis on the economic and political contexts and a practical development of civil society. From this point of view, the economic structure of labour division, the political tension and military opposition in the region, and the immaturity and exclusiveness of civil consciousness can be pointed out as some limitations of environmental security to be constructed in the North-East Asian region. A true environmental security in this region requires formation of reciprocal economic relationship, development of regional institutions for political trust among countries, and improvement of interaction between non-governmental organizations (NGOs).