The awareness of information security in Maltese audit firms : with a focus on the human element

Please use this identifier to cite or link to this item: https://www.um.edu.mt/library/oar/handle/123456789/7378

Full metadata record

DC Field	Value	Language
dc.date.accessioned	2016-01-11T10:21:43Z
dc.date.available	2016-01-11T10:21:43Z
dc.date.issued	2013
dc.identifier.uri	https://www.um.edu.mt/library/oar//handle/123456789/7378
dc.description	B.ACCTY.(HONS)	en_GB
dc.description.abstract	PURPOSE Given that the importance of information security (IS) within organisations is increasing, it was seen necessary to contribute towards this field by analysing the level of security awareness of auditors and accountants in Maltese audit firms. In an effort to do this, the main focus of the research was to give an insight on employee awareness of relevant security threats, the attitude and perception of senior personnel towards the importance of human security awareness, and the gap that exists between documented security policies and individual security practices. DESIGN: Semi-structured interviews were carried out with senior personnel responsible for or having a background knowledge of IS. A different set of questions were set for staff members employed within the audit, accountancy or tax departments of the 'Big Four' audit firms and within medium-sized firms. FINDINGS: The bigger firms are working their way through security challenges evident from the generally higher levels of security threat awareness that exist amongst staff members when compared to the smaller firms. On the other hand, the absence of a security framework as well as of security awareness training suggests that senior management within medium-sized organisations lack commitment towards the role that staff members play in safeguarding information assets. CONCLUSIONS The study elicited that high value is placed on the confidentiality principle. Consequently, whilst greater importance is to be placed on the other two security tenets - integrity and availability, IS should also be viewed as a means to gain competitive advantage. Additionally, Maltese audit firms should work their way towards narrowing the existing gap between policies and practices. Increasing employee involvement in the 'Big Four' audit firms and instilling a security corporate culture in smaller firms may serve to enhance security effectiveness and ensure long term business success. VALUE: It is anticipated that this study will help to increase an understanding of the importance and effectiveness of IS in today's business world and the roles that both audit firms and their staff hold in securing vital information assets.	en_GB
dc.language.iso	en	en_GB
dc.rights	info:eu-repo/semantics/restrictedAccess	en_GB
dc.subject	Risk management	en_GB
dc.subject	Information technology	en_GB
dc.subject	Electronic data processing -- Security measures	en_GB
dc.title	The awareness of information security in Maltese audit firms : with a focus on the human element	en_GB
dc.type	bachelorThesis	en_GB
dc.rights.holder	The copyright of this work belongs to the author(s)/publisher. The rights of this work are as defined by the appropriate Copyright Legislation or as modified by any successive legislation. Users may access this work and can make use of the information contained in accordance with the Copyright Legislation provided that the author must be properly acknowledged. Further distribution or reproduction in any format is prohibited without the prior permission of the copyright holder.	en_GB
dc.publisher.institution	University of Malta	en_GB
dc.publisher.department	Faculty of Economics, Management and Accountancy. Department of Accountancy	en_GB
dc.description.reviewed	N/A	en_GB
dc.contributor.creator	Baldacchino, Jessica
Appears in Collections:	Dissertations - FacEma - 2013 Dissertations - FacEMAAcc - 2013

Files in This Item:

File	Description	Size	Format
13BACC009.pdf Restricted Access		1.74 MB	Adobe PDF	View/Open Request a copy

Show simple item record Statistics