A Model for Enhancing the Information Security Management Systems in Yemen Banks
DOI:
https://doi.org/10.59628/jast.v1i1.14Keywords:
Security management, ISO 27002-2013, Yemen Banks, Security Model, Security evaluationAbstract
Exposure of valuable assets of Yemen banking sector to various attacks and threats may violate the privacy, confidentiality, integrity and accessibility (availability) of their data, information or computer systems resulting in financial and valuable loss. Such a violation may adversely affect the continuity of the business and the competitive advantages they seek to achieve. The objective of this paper is to evaluate the current security performance of banking systems in Yemen and to introduce a framework for improving information security management based on the ISO 27002-2013 benchmark and standards. The proposed framework includes important security factors which are people, technology and process. IBM SPSS AMOS is applied for testing framework hypothesis on complex variable relationships and gain new insight. Such framework shows that the process variable has obtained the most direct positive effect on improving information security management system with value (0.990), while the technology variable has obtained the second direct positive effect on improving the information security management system with value (0.930). Finally, the people variable has obtained the least direct positive effect on improving the information security management system with value (0.740). The research methodology includes: data collection, data analysis, reliability testing and computing results. The model validated and compared with other similar models available in the literature and the results were in valid range. Also, the research hypotheses were significant and deferent results of the proposed model were very promising.
Downloads
Downloads
Published
How to Cite
Issue
Section
License
Copyright (c) 2023 Nagi Al-shaibany
This work is licensed under a Creative Commons Attribution-NonCommercial-NoDerivatives 4.0 International License.