摘要现今环境，信息技术迅速发展，而提高企业员工的信息安全意识势在必行。针对于已有的理论文献在企业安全培养路径只是单纯拿出其中一方面内容进行探讨分析，本论文把企业在培养员工信息安全意识中所运用到的方法综合成一个系统框架，通过分析文献和经验总结，来研究员工信息安全培养路径。其中，激励机制和员工培训主要实现引导作用，高管支持和处罚机制主要实现监督和控制作用，由于培养路径和员工安全信息意识的提高之间的联系太过模糊，在本文中引入中间介质：信息安全行为。通过培养路径到信息安全行为再到员工信息安全意识，以一个链式的结构进行联系，达到准确探析员工信息安全意识培养路径的目的。在本文最后，通过分析一正面一反面两个信息安全事件，实现员工安全意识培养路径在实际中的应用。本文的员工培养路径体系，总结了已有的员工安全信息培养的各个方面，并且可以推广的一般性的企业进行系统的应用。86309

毕业论文关键词：信息安全；信息安全意识；信息安全行为；高管支持

Design and implementation of the universities mobile learning system

Abstract Nowadays, information technology is developing rapidly, and it is imperative to improve information security awareness of employees。 For from the existing theoretical literature in enterprise safety training path simply take out one of the aspects are analyzed and discussed in this paper。 In this paper the enterprise in culture method for the use of the information security awareness of the employees into a system framework, through the analysis of literature and experience summary to study staff information security training path。 The incentive mechanism and employee training mainly to realize the guidance role, top management support and punishment mechanism is mainly to achieve the role of supervision and control, since the development of links between path and employee information security consciousness raise too vague。 In this paper introduced medium: information security behavior。 Through training path to information security behavior and then to employee information security awareness, with a chain structure to contact, to achieve an accurate analysis of employee information security awareness training path。 At the end of this paper, through the analysis of a positive and negative side of the two information security incidents, the implementation of employee safety awareness training path in the actual application。 In this paper, the staff training path system, summed up the existing staff safety information in all aspects of training, and can be generalized to the application of the general enterprise system。

Keywords：Information security；information security awareness；information security behavior；top management support

目   录

1 绪论 1

1。1 研究背景及研究意义 1

1。1。1 研究背景 1

1。1。2 国内外研究现状 1

1。1。3 研究意义 3

1。2 研究内容和方法 3

1。2。1 研究内容 3

1。2。2 研究方法 4

2 员工信息安全意识概述 6

2。1 企业信息安全意识内容 6

2。1。1 企业信息安全意识的形成 6

2。1。2 企业信息安全概念 6

2。1。3 企业信息安全意识