3 resultados para Segurança da informação, legislação, Brasil
em Repositório Institucional da Universidade Federal do Rio Grande do Norte
Resumo:
This study examines the factors that influence public managers in the adoption of advanced practices related to Information Security Management. This research used, as the basis of assertions, Security Standard ISO 27001:2005 and theoretical model based on TAM (Technology Acceptance Model) from Venkatesh and Davis (2000). The method adopted was field research of national scope with participation of eighty public administrators from states of Brazil, all of them managers and planners of state governments. The approach was quantitative and research methods were descriptive statistics, factor analysis and multiple linear regression for data analysis. The survey results showed correlation between the constructs of the TAM model (ease of use, perceptions of value, attitude and intention to use) and agreement with the assertions made in accordance with ISO 27001, showing that these factors influence the managers in adoption of such practices. On the other independent variables of the model (organizational profile, demographic profile and managers behavior) no significant correlation was identified with the assertions of the same standard, witch means the need for expansion researches using such constructs. It is hoped that this study may contribute positively to the progress on discussions about Information Security Management, Adoption of Safety Standards and Technology Acceptance Model
Resumo:
The information technology - IT- benefits have been more perceived during the last decades. Both IT and business managers are dealing with subjects like governance, IT-Business alignment, information security and others on their top priorities. Talking about governance, specifically, managers are facing it with a technical approach, that gives emphasis on protection against invasions, antivirus systems, access controls and others technical issues. The IT risk management, commonly, is faced under this approach, that means, has its importance reduced and delegated to IT Departments. On the last two decades, a new IT risk management perspective raised, bringing an holistic view of IT risk to the organization. According to this new perspective, the strategies formulation process should take into account the IT risks. With the growing of IT dependence on most of organizations, the necessity of a better comprehension about the subject becomes more clear. This work shows a study in three public organizations of the Pernambuco State that investigates how those organizations manage their IT risks. Structured interviews were made with IT managers, and later, analyzed and compared with conceptual categories found in the literature. The results shows that the IT risks culture and IT governance are weakly understood and implemented on those organizations, where there are not such an IT risk methodology formally defined, neither executed. In addition, most of practices suggested in the literature were found, even without an alignment with an IT risks management process
Resumo:
Since centuries ago, the Asians use seaweed as an important source of feeding and are their greatest world-wide consumers. The migration of these peoples for other countries, made the demand for seaweed to increase. This increasing demand prompted an industry with annual values of around US$ 6 billion. The algal biomass used for the industry is collected in natural reservoirs or cultivated. The market necessity for products of the seaweed base promotes an unsustainable exploration of the natural banks, compromising its associated biological balance. In this context, seaweed culture appears as a viable alternative to prevent the depletion of these natural supplies. Geographic Information Systems (GIS) provide space and produce information that can facilitate the evaluation of important physical and socio-economic characteristics for the planning of seaweed culture. This objective of this study is to identify potential coastal areas for seaweed culture in the state of Rio Grande do Norte, from the integration of social-environmental data in the SIG. In order to achieve this objective, a geo-referred database composed of geographical maps, nautical maps and orbital digital images was assembled; and a bank of attributes including physical and oceanographical variables (winds, chains, bathymetry, operational distance from the culture) and social and environmental factors (main income, experience with seaweed harvesting, demographic density, proximity of the sheltered coast and distance of the banks) was produced. In the modeling of the data, the integration of the space database with the bank of attributes for the attainment of the map of potentiality of seaweed culture was carried out. Of a total of 2,011 ha analyzed by the GIS for the culture of seaweed, around 34% or 682 ha were indicated as high potential, 55% or 1,101 ha as medium potential, and 11% or 228 ha as low potential. The good indices of potentiality obtained in the localities studied demonstrate that there are adequate conditions for the installation of seaweed culture in the state of Rio Grande do Norte
