Adoção de Práticas de Gestão de Segurança da Informação: um estudo com gestores públicos

This paper aims to identify which factors influence the adoption of management security information advanced practices by state public managers in Brazil. Argues that information has increasingly proeminent role in organizations, being imperative to use management techniques that give greater security to its use. The theoretical reference of the paper was based on the postulates of the Technology Acceptance Model - TAM authored by Davis, Bagozzi, Warshaw (1989) and the procedures recommended in accordance with ISO/IEC 27011. Methodologically, was adopted a quantitative aproach of analysis using descriptive and inferential techniques, like measures of central tendency, factor analysis and linear regression. The results show that the average age of managers is approximately 43 years and that 70% have some type of postgraduated course completed. About the results of inferential analysis, the constructs "perceived usefulness of adopting safety practices", "attitude toward the safety practices" and "intention to use safety practices" confirmed to be influential in the acceptance of PNAGE's state managers on the practice more advanced access control and control of human resources for information security. Only the construct 'ease of use' was not a good predictor of the level of agreement with the practices recommended by ISO / IEC 27001. It is hoped that this study can support future information security policies, especially when formulated for adhesion to the managers of this research focus areas (planning and management).