DEFICIENCIES OF THE TRADITIONAL APPROACH TO INFORMATION SECURITY AND THE REQUIREMENTS FOR A NEW METHODOLOGY

This paper reflects on managements attitude to information security along with how it is being implemented in the UK. The statistics were obtained through empirical research collected from one hundred and thirty two organizations. It also considers the value of current related research to industry. There is obviously a need for more research to be undertaken in this area as reported computer assisted crime continues to increase. This paper proposes that a new approach to information security is needed and that this type of methodology should consider the human issue which the author believes to be the main contributing factor to breaches in information security.