Human, organizational, and technological factors of IT security

Hawkey, Kirstie; Botta, David; Werlinger, Rodrigo; Müldner, Kasia; Gagné, André; Beznosov, Konstantin

doi:10.1145/1358628.1358905

Cited by 23 publications

(20 citation statements)

References 12 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…, I39). To answer our research questions, we analyzed our interview data corpus from the HOT Admin project; see Hawkey et al (2008) for an overview of other themes of analysis. HOT Admin researchers have conducted 39 semi-structured in situ interviews with security practitioners, who worked for a variety of organizations (11 different organizations from seven sectors).…”

Section: Methodsmentioning

confidence: 99%

Preparation, detection, and analysis: the diagnostic work of IT security incident response

Werlinger

Müldner

Hawkey

et al. 2010

Information Management &Amp; Computer Security

Self Cite

View full text Add to dashboard Cite

Purpose -The purpose of this paper is to examine security incident response practices of information technology (IT) security practitioners as a diagnostic work process, including the preparation phase, detection, and analysis of anomalies. Design/methodology/approach -The data set consisted of 16 semi-structured interviews with IT security practitioners from seven organizational types (e.g. academic, government, and private). The interviews were analyzed using qualitative description with constant comparison and inductive analysis of the data to analyze diagnostic work during security incident response. Findings -The analysis shows that security incident response is a highly collaborative activity, which may involve practitioners developing their own tools to perform specific tasks. The results also show that diagnosis during incident response is complicated by practitioners' need to rely on tacit knowledge, as well as usability issues with security tools. Research limitations/implications -Owing to the nature of semi-structured interviews, not all participants discussed security incident response at the same level of detail. More data are required to generalize and refine the findings. Originality/value -The contribution of the work is twofold. First, using empirical data, the paper analyzes and describes the tasks, skills, strategies, and tools that security practitioners use to diagnose security incidents. The findings enhance the research community's understanding of the diagnostic work during security incident response. Second, the paper identifies opportunities for future research directions related to improving security tools.

show abstract

Section: Methodsmentioning

confidence: 99%

Preparation, detection, and analysis: the diagnostic work of IT security incident response

Werlinger

Müldner

Hawkey

et al. 2010

Information Management &Amp; Computer Security

Self Cite

View full text Add to dashboard Cite

show abstract

“…Figure 1 presents a taxonomy of computer systems research problems in Pervasive Computing. In terms of Security, the human factor is the main point to be considered and there is little empirical evidence about how human, organizational, and technological factors impact IT Security Management (ITSM) [4].…”

Section: A Ubiquitous and Pervasive Computingmentioning

confidence: 99%

Security Paradigm in Ubiquitous Computing

Colella¹,

Colombini

2012

2012 Sixth International Conference on Innovative Mobile and Internet Services in Ubiquitous Computing

View full text Add to dashboard Cite

The vast development of Information and Communication Technologies and the innovations applied in the field of governance and management push the researchers to change their perspectives in finding new security paradigms. The major effort regards the capability to identify some appropriate tools that have the characteristic of better fit with the "object" to protect in the real world.One of main aspect that can ensure the success in this operation is the correct integration and harmonization of the human factor with all remaining factors of a security system. This paper discusses why the CIA (Confidentiality, Integrity and Availability) paradigm is no more valid and able to perform its effect in a post-modern world, and why Cloud and Pervasive Computing requires a new approach in which the user become the main actor of the entire security system.

show abstract

“…The project goals are: (1) to devise a methodology for evaluating the usability of ITSM tools; and (2) to design effective technological solutions and guidelines to aid SPs [22]. The HOT Admin researchers have performed a participatory observation in one academic workplace and conducted interviews with 36 SPs.…”

Section: The Hot Admin Projectmentioning

confidence: 99%

“…Previous studies show that, beside technological factors, human and organizational factors also impact IT security management(ITSM) [36,9,22]. Security practitioners (SPs) face challenges (discussed in detail in section 2.2) related to each of those factors [44].…”

Section: Introductionmentioning

confidence: 99%

“…A key factor that impacts the effectiveness of ITSM tools is their usability [12]. In this paper, we present a set of guidelines for ITSM tools based on the available literature and results of the HOT Admin project (see [22] for an overview of the project). Developing a set of guidelines specific to such tools is necessary, due to the importance of IT security in organizations and the evolving and competitive market of tools for managing it [8].…”

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

Guidelines for designing IT security management tools

Jaferian

Botta

Raja

et al. 2008

Proceedings of the 2nd ACM Symposium on Computer Human Interaction for Management of Information Technology

Self Cite

View full text Add to dashboard Cite

An important factor that impacts the effectiveness of security systems within an organization is the usability of security management tools. In this paper, we present a survey of design guidelines for such tools. We gathered guidelines and recommendations related to IT security management tools from the literature as well as from our own prior studies of IT security management. We categorized and combined these into a set of high level guidelines and identified the relationships between the guidelines and challenges in IT security management. We also illustrated the need for the guidelines, where possible, with quotes from additional interviews with five security practitioners. Our framework of guidelines can be used by those developing IT security tools, as well as by practitioners and managers evaluating tools.

show abstract

Human, organizational, and technological factors of IT security

Cited by 23 publications

References 12 publications

Preparation, detection, and analysis: the diagnostic work of IT security incident response

Preparation, detection, and analysis: the diagnostic work of IT security incident response

Security Paradigm in Ubiquitous Computing

Guidelines for designing IT security management tools

Contact Info

Product

Resources

About