Sökning: onr:"swepub:oai:DiVA.org:hj-47025" >
Security-related st...
Security-related stress : A perspective on information security risk management
-
- Lundgren, Martin (författare)
- Luleå tekniska universitet,Digitala tjänster och system,Department of Computer Science Luleå University of Technology Luleå, Sweden
-
- Bergström, Erik, 1976- (författare)
- Högskolan i Skövde,Institutionen för informationsteknologi,Forskningsmiljön Informationsteknologi,Informationssystem (IS), Information Systems
-
(creator_code:org_t)
- IEEE, 2019
- 2019
- Engelska.
-
Ingår i: 2019 International Conference on Cyber Security and Protection of Digital Services, Cyber Security 2019. - : IEEE. - 9781728102290 - 9781728102306
- Relaterad länk:
-
https://ltu.diva-por... (primary) (Raw object)
-
visa fler...
-
https://urn.kb.se/re...
-
https://doi.org/10.1...
-
https://urn.kb.se/re...
-
https://urn.kb.se/re...
-
visa färre...
Abstract
Ämnesord
Stäng
- In this study, the enactment of information security risk management by novice practitioners is studied by applying an analytical lens of security-related stress. Two organisations were targeted in the study using a case study approach to obtain data about their practices. The study identifies stressors and stress inhibitors in the ISRM process and the supporting ISRM tools and discusses the implications for practitioners. For example, a mismatch between security standards and how they are interpreted in practice has been identified. This mismatch was further found to be strengthened by the design of the used ISRM tools. Those design shortcomings hamper agility since they may enforce a specific workflow or may restrict documentation. The study concludes that security-related stress can provide additional insight into security-novice practitioners' ISRM challenges.
Ämnesord
- SAMHÄLLSVETENSKAP -- Medie- och kommunikationsvetenskap -- Systemvetenskap, informationssystem och informatik med samhällsvetenskaplig inriktning (hsv//swe)
- SOCIAL SCIENCES -- Media and Communications -- Information Systems, Social aspects (hsv//eng)
Nyckelord
- Compliance
- Information security
- Information security risk management
- Management
- Novices
- Stress
- Tools
- Information services
- Security of data
- Stresses
- Case study approach
- Information security risk managements
- Security standards
- Risk management
- Software Systems Research Group (SSRG)
- Software Systems Research Group (SSRG)
- Information systems
- Centrumbildning - Centrum för säkerhet i samhälle och kritiska infrastrukturer (CISS)
- Information Systems
Publikations- och innehållstyp
- ref (ämneskategori)
- kon (ämneskategori)
Hitta via bibliotek
Till lärosätets databas