Optimal Selection of Security Countermeasures for Effective Information Security

Sarala, R.; Zayaraz, G.; Vijayalakshmi, V.

doi:10.1007/978-81-322-2674-1_33

Cited by 5 publications

(5 citation statements)

References 7 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…These signals are used by external parties as a means to mitigate uncertainty linked with unfamiliar agents in a knowledge market (Lichtenthaler and Ernst, 2007). Reputable firms can attract more valuable external partners (Gassmann et al, 2009) and inspire knowledge sharing (Zhang et al, 2015;Sarala et al, 2016). In this way, corporate reputation promotes the implementation of trust-based relationships between a focal firm and its supplier chain partners to freely share information, expertise, skills and experiences.…”

Section: Supply Chain Knowledge Corporate Reputation and Green Innova...mentioning

confidence: 99%

How does supply chain knowledge enhance green innovation? The mediation mechanisms of corporate reputation and non-supply chain learning

Agyabeng‐Mensah

Afum²,

Acquah³

et al. 2022

JBIM

View full text Add to dashboard Cite

Purpose Understanding the factors that advance green innovation is crucial for firms to deal with the complexity of green innovation. In light of this, this study aims to explore the influence of supply chain knowledge, non-supply chain learning and corporate reputation on green innovation. Design/methodology/approach This study uses a quantitative research approach where data is gathered from managers of 208 small and medium enterprises in Ghana using survey questionnaires. The structural equation modeling is used to analyze the survey data. Findings The findings reveal supply chain knowledge relates positively with non-supply chain learning, corporate reputation and green innovation. Corporate reputation also impacts green innovation positively and provides partial mediation effect between supply chain knowledge and green innovation. Meanwhile, non-supply chain learning does not relate positively with green innovation as well as fails to mediate the impact of supply chain knowledge on green innovation. Originality/value This study contributes to knowledge in the mediating mechanisms of corporate reputation and non-supply chain learning between supply chain knowledge and green innovation. Through this, the authors propose a theoretical model to explain how firms can leverage supply chain knowledge, corporate reputation and non-supply chain learning to improve green innovation and can serve as the basis for further theoretical and empirical research in innovation and external sources of knowledge.

show abstract

Section: Supply Chain Knowledge Corporate Reputation and Green Innova...mentioning

confidence: 99%

How does supply chain knowledge enhance green innovation? The mediation mechanisms of corporate reputation and non-supply chain learning

Agyabeng‐Mensah

Afum²,

Acquah³

et al. 2022

JBIM

View full text Add to dashboard Cite

show abstract

“…Security Control Scoring: Dor and Elovici [9] identify great differences in the ways organisations make security control decisions influenced by a multitude of criteria, including policy, competitive advantage, financial considerations, quality, compliance, customer expectations, and strategy. Effectiveness of Controls is assessed based on their cost [12, 13, 20, 23-25, 35, 36, 44, 46, 56] and difficulty of implementation [4]; operation, training, and maintenance cost [34,54]; efficiency, effectiveness, performance, degree or number of threats addressed [4,12,34,44,54]; alignment with applicable standards, laws, and regulations [28,34], and stakeholder preferences [10]. Most of the work surveyed either run operation research (OR) simulations or relied on SME surveys to score security controls.…”

Section: Related Workmentioning

confidence: 99%

Effect of Security Controls on Patching Window: A Causal Inference based Approach

Kuppa

Aouad²,

Le-Khac

2020

Annual Computer Security Applications Conference

View full text Add to dashboard Cite

“… Business impact/disruption, anticipated loss, profit reduction, fines, reputation, decline in stock price, damage [17]- [23]  Risk tolerance [12], [19], [24]; Budget [19]  Legal and regulatory [22]  Self-imposed constraints [22] Asset  Importance/value [13], [24]- [27]  Assessed risk [12], [24]  Probability of breach, event, or successful attack [13], [24], [26], [28], [29] Threat  Anticipated [25], [27], [30], [31]  Most significant [25]  Residual risk [23], [32]; Incident data [17] Control  Cost, general [12], [13], [30], [32], [18], [20]- [23], [26]- [28]  Purchase/setup [17], [24], [25], [33]- [35]  Number of controls as a proxy for cost [36]  Difficulty of implementation [25]  Operation, training, and maintenance cost [17], [24], [25],…”

Section: Organizationalmentioning

confidence: 99%

“…It is used to analyze problems where there are some measures of costs and benefits that can be traded off to arrive at the best solution under the given constraints. Researchers investigate a number of MCDM techniques for this problem, some of which include or are based on fuzzy set theory [34], multi-attribute utility theory (i.e., value functions, knapsack strategy) [18], [27], [30], [37], evolutionary multi-objective optimization (EMO) also known as genetic algorithms [13], [20], [23], [26], [32], [35], analytic hierarchy process (AHP) [31], grey relational analysis (GRA) [25], simple additive weighting (SAW) [17], the technique for order preference by similarity to ideal solution (TOP-SIS) [25], and preference ranking organization method for enrichment evaluation (PROMETHEE) [33].…”

Section: Organizationalmentioning

confidence: 99%

Multi-Criteria Selection of Capability-Based Cybersecurity Solutions

Llansó¹,

McNeil²,

Noteboom³

2019

Proceedings of the Annual Hawaii International Conference on System Sciences

View full text Add to dashboard Cite

Given the increasing frequency and severity of cyber attacks on information systems of all kinds, there is interest in rationalized approaches for selecting the "best" set of cybersecurity mitigations. However, what is best for one target environment is not necessarily best for another. This paper examines an approach to selection that uses a set of weighted criteria, where the security engineer sets the weights based on organizational priorities and constraints. The approach is based on a capability-based representation for cybersecurity mitigations. The paper discusses a group of artifacts that compose the approach through the lens of Design Science research and reports performance results of an instantiation artifact.

show abstract

Optimal Selection of Security Countermeasures for Effective Information Security

Cited by 5 publications

References 7 publications

How does supply chain knowledge enhance green innovation? The mediation mechanisms of corporate reputation and non-supply chain learning

How does supply chain knowledge enhance green innovation? The mediation mechanisms of corporate reputation and non-supply chain learning

Effect of Security Controls on Patching Window: A Causal Inference based Approach

Multi-Criteria Selection of Capability-Based Cybersecurity Solutions

Contact Info

Product

Resources

About