Factors affecting information security compliance among SMEs in Cape Town
Lawrence, Felencia Linthea
MetadataShow full item record
Small and medium enterprises are depending on the use of IT systems to compete and participate in the South African economy and also to improve the efficiency of their service delivery. Using IT systems in their business has increased risks and hazards regarding information security. Even though information security has been around for a while and several research studies have been conducted on the topic, it is still unclear how SMEs comply with the standards and regulations that are associated with it. The study aimed to fill this gap by examining the information security phenomenon from the point of view of South African SMEs. The purpose of this study was to investigate the factors that influence the adoption of information security compliance by SMEs. Following a survey design together with a quantitative research approach, the collection of survey questionnaires was used as a means of data collection. In addition, the data obtained from the surveys collected was analysed using a quantitative data analysis process. The study revealed several technological, organizational and environmental factors that influence the organization’s readiness to be compliant with information security policies as well as South African regulations and global standards. The results revealed a positive relationship between these factors that significantly impact the organization.