Information Security and Business Continuity in SMEs

Antti Tuomisto, Mikko Savela



The information society leads the way to the tomorrow’s success. However, many SMEs are not on the fast lane of this highway. In this paper we give a description of what is going on and what is going to happen to SMEs in which the ICT has not yet established a central role. The aim is to describe the situation in these SMEs. The objectives of information society strategies might seem inappropriate or impractical from the perspective of non-IT-intensive SMEs. We describe the current situation of information security, and the development trends based on our survey. Our act-oriented framework suggests improvement areas in SMEs for information security and business continuity management. This management contains i) prevention, ii) recovery and iii) the procedure of information security initiation activities. The initiation process of new employees seems to be one of the few practical and cost-effective ways to make a durable change in the work place.


  1. Badrinath, R., Wignaraja, G.: Building business competitiveness. International trade forum, 2, p. (2004) 6-7
  2. Elfring, T., Hulsink, W.: Networks in entrepreneurship: the case of high-technology firms. Small business economics, 21, (2003) 409-422
  3. Eriksson, I., Nurminen, M.I.: Doing by Learning: Embedded Application Systems. Journal of Organizational Computing, 1(4), (1991) 323-339
  4. EU ICT Report: Strengthening competitiveness through co-operation: European research in information and communication technologies, Bryssel (2004)
  5. EU Manufacture group: Manufuture: A vision for 2020. Brussels (2004).
  6. Finland in the Global Economy: Finland's competence, openness and renewability. (9.1.2006) (2004)
  7. Finne, T.: A Decision Support System for Improving Information Security. TUCS Dissertations, No 8, Abo Akademi, Finalnd, March (1998)
  8. Hautamäki, A., Lemola, T.: Suomi uuteen nousuun: Innovaatiot ja osaaminen huipputasolle. Helsinki: Sitra, Edita (in Finnish) (2004)
  9. Himanen, P., (ed.): Globaali tietoyhteiskunta. Kehityssuuntia Piilaaksosta Singaporeen. Helsinki, Tekes (in Finnish) (2004a)
  10. Himanen, P.,: Välittävä, kannustava ja luova Suomi. Teknologian arviointeja 18, Tulevaisuusvaliokunta, Eduskunta, Edita, Helsinki (in Finnish) (2004b)
  11. Information Society Program of the Finnish Government: Tietoyhteiskuntaohjelma. Helsinki, Valtioneuvoston kanslia (in Finnish) (2004)
  12. Lindroos, P., Pinkhasov, M.: Information society: the ICT challenge. The OECD Observer, 240/241 (2003) 27-29
  13. Nurminen, M.I., Eriksson, I.: Information systems research: the 'infurgic' perspective. International Journal of Information Management, 19, (1999) 87-94
  14. Nurminen, M.I., Forsman, U.: Reversed Quality Life Cycle Model. G.E. Bradley, H.W. Hendrick (eds.) Human Factors in Organizational Design and Management. North-Holland, Amsterdam, (1994) 393-398
  15. Savela, M., Tuomisto, A.: About information security and business continuity in SMEs in Western Finland. Turku (to be published, in Finnish) (2006)
  16. Snyder, D.: Five Meta-Trends Changing the World. The Futurist, July-August (2004) 22-27
  17. Terziovski, M.: The relationship between networking practices and business excellence: a study of small to medium enterprises. Measuring business excellence, 7 (2003) 78-92
  18. Uhlaner, L.M.: Trends in European research on entrepreneurship at the turn of the century. Small Business Economics, 21 (2003) 321-328

Paper Citation

in Harvard Style

Tuomisto A. and Savela M. (2006). Information Security and Business Continuity in SMEs . In Proceedings of the 4th International Workshop on Security in Information Systems - Volume 1: WOSIS, (ICEIS 2006) ISBN 978-972-8865-52-8, pages 80-90. DOI: 10.5220/0002478400800090

in Bibtex Style

author={Antti Tuomisto and Mikko Savela},
title={Information Security and Business Continuity in SMEs},
booktitle={Proceedings of the 4th International Workshop on Security in Information Systems - Volume 1: WOSIS, (ICEIS 2006)},

in EndNote Style

JO - Proceedings of the 4th International Workshop on Security in Information Systems - Volume 1: WOSIS, (ICEIS 2006)
TI - Information Security and Business Continuity in SMEs
SN - 978-972-8865-52-8
AU - Tuomisto A.
AU - Savela M.
PY - 2006
SP - 80
EP - 90
DO - 10.5220/0002478400800090