Abstract:
Information security management is still very little known and definitely underused in the conditions of enterprises which are active in the electronic market. There is a lack of adequate security awareness against IT security threats that relate to the growth of ICT. In terms of business size, it is generally assumed that the smaller the enterprise is, the less the enterprise is concerned with information security. However, vulnerable information assets need to be secured in any enterprise that sells products and services electronically, as the consequences of risks could be existential. The paper presents the results of a survey focusing on the current state of information security management in Slovak e-business and evaluates a correlation between the costs incurred for information security and the level of information security in the examined enterprises.