What Influences Information Security Behavior? A Study with Brazilian Users

The popularization of software to mitigate Information Security threats can produce an exaggerated notion about its full effectiveness in the elimination of any threat. This situation can result reckless users behavior, increasing vulnerability. Based on behavioral theories, a theoretical model and hypotheses were developed to understand the extent to which human perception of threat, stress, control and disgruntlement can induce responsible behavior. A self-administered questionnaire was created and validated. The data were collected in Brazil, and complementary results regarding similar studies conducted in USA were found. The results show that there is influence of information security orientations provided by organizations in the perception about severity of the threat. The relationship between threat, effort, control and disgruntlement, and the responsible behavior towards information security was verified through linear regression. The contributions also involve relatively new concepts in the field and a new research instrument.

PROPOSTA DE MODELO DE MEDIÇÕES PARA CONTRATAÇÃO DO GERENCIAMENTO DE PROCESSO DE NEGÓCIO (BUSINESS PROCESS MANAGEMENT- BPM)

O Gerenciamento de Processo de Negócio (Business Process Management- BPM) tem sido uma prática adotada pelas organizações públicas e privadas. O BPM possibilita a identificação eficaz das necessidades e das informações necessárias para suportar a operacionalização ou a automatização do processo de negócio. Considerando que as organizações têm necessitado terceirizar esse serviço, o objetivo desse trabalho foi propor um modelo de medição para contratação dos serviços de BPM. Para atender a esse objetivo, o modelo conceitual construído partiu da premissa que a gestão da contratação de um BPM deve fornecer critérios para mensurar a demanda, ou serviço, avaliar a qualidade dos serviços prestados e a qualidade do produto recebido. O estudo adotou como instrumentos de coleta de dados a pesquisa documental e a revisão sistemática. Com base nos objetivos e questões de pesquisa foram identificados os strings para busca, definidas as fontes de busca, critérios de inclusão e exclusão dos resultados. Todos os trabalhos selecionados foram lidos e analisados e foi utilizado um mapa mental para consolidação dos resultados. Foi utilizado o GQM (Goal, Questions, Metrics) para a elaboração das medições e adotado o estudo de caso. Parte das medições propostas foram aplicadas em 13 modelos de processo de negócio do mundo real com o objetivo de verificar sua coerência e comparar os resultados. Foi realizada entrevista com especialista em modelagem de processos de negócios para avaliar os resultados obtidos e, na percepção deste especialista a maior parte das métricas propostas pela pesquisa é adequada à realidade de mercado, considerando o contexto de terceirização desse serviço.

Factors influencig software migration decision: case studies of acerlormittal Tubarão and the city government of Serra, Espirito Santo

The objective of this research is to identify the factors that influence the migration of free software to proprietary software, or vice-versa. The theoretical framework was developed in light of the Diffusion of Innovations Theory (DIT) proposed by Rogers (1976, 1995), and the Unified Theory of Acceptance and Use of Technology (UTAUT) proposed by Venkatesh, Morris, Davis and Davis (2003). The research was structured in two phases: the first phase was exploratory, characterized by adjustments of the revised theory to fit Brazilian reality and the identification of companies that could be the subject of investigation; and the second phase was qualitative, in which case studies were conducted at ArcelorMittal Tubarão (AMT), a private company that migrated from proprietary software (Unix) to free software (Linux), and the city government of Serra, in Espírito Santo state, a public organization that migrated from free software (OpenOffice) to proprietary (MS Office). The results show that software migration decision takes into account factors that go beyond issues involving technical or cost aspects, such as cultural barriers, user rejection and resistance to change. These results underscore the importance of social aspects, which can play a decisive role in the decision regarding software migration and its successful implementation.

Favorability conditions in the adoption of agile method practices for software development in a public banking

The main purpose of this paper is to propose and test a model to assess the degree of conditions favorability in the adoption of agile methods to develop software where traditional methods predominate. In order to achieve this aim, a survey was applied on software developers of a Brazilian public retail bank. Two different statistical techniques were used in order to assess the quantitative data from the closed questions in the survey. The first, exploratory factorial analysis validated the structure of perspectives related to the agile model of the proposed assessment. The second, frequency distribution analysis to categorize the answers. Qualitative data from the survey opened question were analyzed with the technique of qualitative thematic content analysis. As a result, the paper proposes a model to assess the degree of favorability conditions in the adoption of Agile practices within the context of the proposed study.