An information classification model for public sector organizations in Sweden: a case study of a Swedish municipality. (16th August 2021)
- Record Type:
- Journal Article
- Title:
- An information classification model for public sector organizations in Sweden: a case study of a Swedish municipality. (16th August 2021)
- Main Title:
- An information classification model for public sector organizations in Sweden: a case study of a Swedish municipality
- Authors:
- Bergquist, Jan-Halvard
Tinet, Samantha
Gao, Shang - Abstract:
- Abstract : Purpose: The purpose of this study is to create an information classification model that is tailored to suit the specific needs of public sector organizations in Sweden. Design/methodology/approach: To address the purpose of this research, a case study in a Swedish municipality was conducted. Data was collected through a mixture of techniques such as literature, document and website review. Empirical data was collected through interviews with 11 employees working within 7 different sections of the municipality. Findings: This study resulted in an information classification model that is tailored to the specific needs of Swedish municipalities. In addition, a set of steps for tailoring an information classification model to suit a specific public organization are recommended. The findings also indicate that for a successful information classification it is necessary to educate the employees about the basics of information security and classification and create an understandable and unified information security language. Practical implications: This study also highlights that to have a tailored information classification model, it is imperative to understand the value of information and what kind of consequences a violation of established information security principles could have through the perspectives of the employees. Originality/value: It is the first of its kind in tailoring an information classification model to the specific needs of a Swedish municipality.Abstract : Purpose: The purpose of this study is to create an information classification model that is tailored to suit the specific needs of public sector organizations in Sweden. Design/methodology/approach: To address the purpose of this research, a case study in a Swedish municipality was conducted. Data was collected through a mixture of techniques such as literature, document and website review. Empirical data was collected through interviews with 11 employees working within 7 different sections of the municipality. Findings: This study resulted in an information classification model that is tailored to the specific needs of Swedish municipalities. In addition, a set of steps for tailoring an information classification model to suit a specific public organization are recommended. The findings also indicate that for a successful information classification it is necessary to educate the employees about the basics of information security and classification and create an understandable and unified information security language. Practical implications: This study also highlights that to have a tailored information classification model, it is imperative to understand the value of information and what kind of consequences a violation of established information security principles could have through the perspectives of the employees. Originality/value: It is the first of its kind in tailoring an information classification model to the specific needs of a Swedish municipality. The model provided by this study can be used as a tool to facilitate a common ground for classifying information within all Swedish municipalities, thereby contributing the first step toward a Swedish municipal model for information classification. … (more)
- Is Part Of:
- Information and computer security. Volume 30:Number 2(2022)
- Journal:
- Information and computer security
- Issue:
- Volume 30:Number 2(2022)
- Issue Display:
- Volume 30, Issue 2 (2022)
- Year:
- 2022
- Volume:
- 30
- Issue:
- 2
- Issue Sort Value:
- 2022-0030-0002-0000
- Page Start:
- 153
- Page End:
- 172
- Publication Date:
- 2021-08-16
- Subjects:
- Information classification -- Information classification model -- Information security -- Information security principles -- Swedish civil contingencies agency (MSB)
Computer security -- Management -- Periodicals
Computer networks -- Security measures -- Periodicals
Data protection -- Management -- Periodicals
658.47 - Journal URLs:
- http://www.emeraldinsight.com/loi/ics ↗
http://www.emeraldinsight.com/ ↗ - DOI:
- 10.1108/ICS-03-2021-0032 ↗
- Languages:
- English
- ISSNs:
- 2056-4961
- Deposit Type:
- Legaldeposit
- View Content:
- Available online (eLD content is only available in our Reading Rooms) ↗
- Physical Locations:
- British Library DSC - 4481.796000
British Library DSC - BLDSS-3PM
British Library HMNTS - ELD Digital store - Ingest File:
- 26163.xml