This study, in a quite general sense, concerned computer security. Computer security, however, all too often is perceived as a set of procedures designed to foil efforts designed to gain unlawful access to electronic information systems. Data stored in electronic information systems, however, may be lost, damaged, or compromised by means other that the actions of individuals gaining illegal access to such systems. Both natural and manmade disasters, although low probability in character, hold the potential to cause high level data loss and damage. Thus, the prudent administrator or manager will devise and implement some sort of plan to protect information systems against the effects of such events. In this sense, therefore, this study, also in a somewhat general sense, was concerned with data recovery planning for electronic information systems.
Data recovery planning, however, provided only the environmental context for this study. The research focus of this study was the attitudes of administrators and managers toward data recovery planning for electronic information systems. Specifically, the twofold purpose of this study was to develop a methodology, or model, to facilitate the (1) measurement of the attitudes of administrators and managers toward data recovery planning associated with low probability/high loss potential events, and (2) the manipulation of such attitudes, where desirable, to enhance the security and integrity of electronic information systems.
The development of such a model, or methodology, is relevant to the management of electronic information systems regardless of the society within which they function. The role of such a model often assumes greater significance, however, in developing societies wherein higher level administrators and managers may be far less familiar than less senior personnel are with many aspects of information system management, and, in turn, less sensitive to the need to acco...