Ye Hou scite author profile

Ye Hou

3Publications

14Citation Statements Received

140Citation Statements Given

How they've been cited

How they cite others

140

Affiliations

Lancaster University

Publications

Order By: Most citations

Understanding Security Requirements for Industrial Control System Supply Chains

Hou

Such

Rashid

2019

View full text Add to dashboard Cite

We address the need for security requirements to take into account risks arising from complex supply chains underpinning cyber-physical infrastructures such as industrial control systems (ICS). We present SEISMiC (SEcurity Industrial control SysteM supply Chains), a framework that takes into account the whole spectrum of security risks-from technical aspects through to human and organizational issues-across an ICS supply chain. We demonstrate the effectiveness of SEISMiC through a supply chain risk assessment of Natanz, Iran's nuclear facility that was the subject of the Stuxnet attack. Index Terms-security requirements, cyber-physical systems, risk decision-making, supply chains.

show abstract

Understanding organisational responses to regulative pressures in information security management: The case of a Chinese hospital

Hou

Gao

Nicholson

2018

Technological Forecasting and Social Change

View full text Add to dashboard Cite

This paper advances existing theoretical understanding of the factors impacting upon organisational responses to regulative pressures in the process of information security management (ISM). Drawing on institutional theory, we conduct a case study of ISM in a Chinese hospital. A theoretical framework is presented, which proposes that organisational response strategies devised in response to regulative pressures are determined jointly by internal organisational incentives and external government supervision and enforcement. Practical implications for policymakers to promote organisational ISM are given and suggestions for future research based on the theoretical findings of the case study are provided.

show abstract

The Influence of Institutional Forces on Employee Compliance with Information Security Policies

Hou¹,

Gao

Heeks³

2011

View full text Add to dashboard Cite

Information Security is an issue of growing concern to organisations, typically addressed by development of information security policies. However, policies are only effective if organizational employees comply with them. This paper reviews literature related to employees' security behaviour and information security policy compliance and presents research gaps from literature review on influencing employees' compliance behaviour with information security policy. Here, we analyse the institutional factors that shape employee behaviour towards information security policy compliance. Applying institutional theory, we posit that an employee's compliance behaviour with information security policy is positively influenced by regulative, normative and culture-cognitive forces in organisations.

show abstract

scite is a Brooklyn-based organization that helps researchers better discover and understand research articles through Smart Citations–citations that display the context of the citation and describe whether the article provides supporting or contrasting evidence. scite is used by students and researchers from around the world and is funded in part by the National Science Foundation and the National Institute on Drug Abuse of the National Institutes of Health.

Contact Info

customersupport@researchsolutions.com

10624 S. Eastern Ave., Ste. A-614

Henderson, NV 89052, USA

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Blog Terms and Conditions API Terms Privacy Policy Contact Cookie Preferences Do Not Sell or Share My Personal Information

Made with 💙 for researchers

Part of the Research Solutions Family.

Ye Hou

Understanding Security Requirements for Industrial Control System Supply Chains

Understanding organisational responses to regulative pressures in information security management: The case of a Chinese hospital

The Influence of Institutional Forces on Employee Compliance with Information Security Policies

Contact Info

Product

Resources

About