Á¤º¸°úÇÐȸ ³í¹®Áö I : Á¤º¸Åë½Å
ÇѱÛÁ¦¸ñ(Korean Title) |
Á¤º¸º¸È£ °ü¸®Ã¼°è ¿î¿ëÀÌ Á¤º¸º¸È£ ¼º°ú¿¡ ¹ÌÄ¡´Â ¿µÇâ |
¿µ¹®Á¦¸ñ(English Title) |
The Effects of the Operation of an Information Security Management System on the Performance of Information Security |
ÀúÀÚ(Author) |
Àå»ó¼ö
³ëºÀ³²
ÀÌ»óÁØ
SangSoo Jang
BongNam Noh
SangJoon Lee
|
¿ø¹®¼ö·Ïó(Citation) |
VOL 40 NO. 01 PP. 0058 ~ 0069 (2013. 02) |
Çѱ۳»¿ë (Korean Abstract) |
±¹³»・¿ÜÀûÀ¸·Î Á¤ºÎ³ª Á¶Á÷Àº °³ÀÎÁ¤º¸À¯Ãâ, ÇØÅ· µî °¢Á¾ ħÇØ»ç°í¿¡ ´ëÇÏ¿© ¼±Á¦ÀûÀ¸·Î ¿¹¹æÇϱâ À§ÇÏ¿© ±â¼úÀû, °ü¸®Àû, ¹ý·üÀû ¹®Á¦¸¦ Á¾ÇÕÀûÀÌ°í ü°èÀûÀ¸·Î ´ëÀÀ ÇÒ ¼ö ÀÖ´Â ´Ù¾çÇÑ Á¤º¸º¸È£ °ü¸®Ã¼°è Á¦µµ¸¦ µµÀÔ・¿î¿ëÇÏ°í ÀÖ´Ù. ÀÌ·¯ÇÑ Á¤º¸º¸È£ °ü¸®Ã¼°è°¡ ±¹°¡³ª Á¶Á÷¿¡¼ ±Û·Î¹ú °æÀï·ÂÀÇ Çϳª·Î ÀÎ½ÄµÇ¸é¼ Á¤º¸º¸È£¿¡ ´ëÇÑ ÅõÀÚ°¡ ºñ¿ëÀÌ ¾Æ´Ï¶ó ÅõÀÚ¶ó´Â Àνİú ÇÔ²² Á¤º¸º¸È£ °ü¸®Ã¼°è¸¦ µµÀÔ・¿î¿ëÇÏ´Â µî ¸¹Àº ³ë·Â°ú ÀÚ¿øÀ» ÅõÀÚÇÏ°í ÀÖÁö¸¸, Á¤º¸º¸È£Ã¼°è ¿î¿ëÀÌ Á¶Á÷ÀÇ ¼º°ú¿¡ ¾ó¸¶³ª ±â¿©ÇÏ¿´´ÂÁö ÇÏ°í ÀÖ´ÂÁö¿¡ ´ëÇؼ´Â ¾ÆÁ÷±îÁö ¸íÈ®ÇÏ°Ô ¹àÇôÁø ¹Ù°¡ ¾ø´Ù. ÀÌ¿¡ µû¶ó º» ¿¬±¸´Â ±¹³» ISMS ÀÎÁõ Ãëµæ±â¾÷ Á¤º¸º¸È£ ´ã´çÀÚ¿¡ ´ëÇÑ ¼³¹®Á¶»ç¸¦ ÅëÇØ ISMS ÀÎÁõÀÌ ±â¾÷ÀÇ Á¤º¸º¸È£ ¼º°ú¿¡ ¾ó¸¶³ª ±àÁ¤ÀûÀ¸·Î ¿µÇâÀ» ¹ÌÄ£´Ù´Â »ç½ÇÀ» ½ÇÁõÀûÀ¸·Î ºÐ¼®ÇÏ¿©, Á¶Á÷¼º°ú¿¡ ¿µÇâÀÌ ÀÖ´Ù´Â °ÍÀ» ÀÔÁõÇÏ¿´À¸¸ç ±â¾÷µé·Î ÇÏ¿©±Ý ISMS ÀÎÁõ ÃëµæÀÇ È¿°ú¸¦ ÀνÄÇÏ¿© ±Ã±ØÀûÀ¸·Î ISMS ±¸ÃàÀ» ÅëÇØ º¸¾È »ç°í¸¦ »çÀü¿¡ ¿¹¹æÇÏ°í ±â¾÷¼º°ú¸¦ Çâ»ó½ÃÅ°´Âµ¥ µµ¿òÀ» ÁÖ°íÀÚ ÇÏ¿´´Ù.
|
¿µ¹®³»¿ë (English Abstract) |
Many domestic organizations are introducing and operating various information security management systems capable of coping with technical, administrative, and legal issues comprehensively and systematically, in order to prevent various infringement incidents such as personal information disclosure and hacking preemptively and actively. However, empirical analyses regarding the extent to which an information security management system contributes to information security performance have not been fully conducted, even though enterprises and organizations are actively introducing such systems in order to achieve their information security objectives as a part of their organizational management activities in line with their respective business, by investing considerable effort and resources in developing and operating these systems. this study will substantiate the fact that development and certification of ISMS positively affect the business performance of enterprises so that they will recognize the effect of obtaining ISMS certification and eventually prevent security accidents and improve their business performance by developing ISMS.
|
Å°¿öµå(Keyword) |
Á¤º¸º¸È£°ü¸®±¸Á¶
PDCA¸ðµ¨
Á¤º¸º¸È£¼º°ú
Á¤º¸º¸È£°ü¸®Ã¼°è
information security management framework
PDCA model
information security performance
information security management system
|
ÆÄÀÏ÷ºÎ |
PDF ´Ù¿î·Îµå
|