Kaja Prislan

The code of silence and female police officers in Slovenia

Purpose – For some time now, research conducted in the field of human behavior and criminology has pertained to the contemporary question as to whether there are any relevant differences between the genders regarding their integrity and opinions held and, if so, which of these lead to different behaviors. The purpose of this paper is to determine whether there are any gender differences in willingness to report police misconduct and if so, what is the nature of these differences. Design/methodology/approach – In spring 2011, the study was conducted on a representative sample of 408 frontline Slovenian police officers (87.3 percent were male and 12.7 percent were female). The assessment of the code of silence was conducted using the method developed by Klockars and Kutnjak Ivkovic (2004), and consisted of 14 hypothetical scenarios describing a range of various forms of police misconduct, from those that merely give the appearance of a conflict of interest, to incidents of bribery and theft. One of the ques...

Measuring Information Security Performance with 10 by 10 Model for Holistic State Evaluation

Organizations should measure their information security performance if they wish to take the right decisions and develop it in line with their security needs. Since the measurement of information security is generally underdeveloped in practice and many organizations find the existing recommendations too complex, the paper presents a solution in the form of a 10 by 10 information security performance measurement model. The model—ISP 10×10M is composed of ten critical success factors, 100 key performance indicators and 6 performance levels. Its content was devised on the basis of findings presented in the current research studies and standards, while its structure results from an empirical research conducted among information security professionals from Slovenia. Results of the study show that a high level of information security performance is mostly dependent on measures aimed at managing information risks, employees and information sources, while formal and environmental factors have a lesser impact. Experts believe that information security should evolve systematically, where it’s recommended that beginning steps include technical, logical and physical security controls, while advanced activities should relate predominantly strategic management activities. By applying the proposed model, organizations are able to determine the actual level of information security performance based on the weighted indexing technique. In this manner they identify the measures they ought to develop in order to improve the current situation. The ISP 10×10M is a useful tool for conducting internal system evaluations and decision-making. It may also be applied to a larger sample of organizations in order to determine the general state-of-play for research purposes.