Information security incident management: Identified practice in large organizations

Proceedings - 8th International Conference on IT Security Incident Management and IT Forensics, IMF 2014

Volumn , Issue , 2014, Pages 27-46

  Hove, Cathrine ^a   Tarnes, Marte ^a   Line, Maria B ^a   Bernsmed, Karin ^a,b  

^a NORWEGIAN UNIVERSITY OF SCIENCE AND TECHNOLOGY   (Norway)

^b SINTEF ICT   (Norway)

Author keywords

Best practices; Incident management; Information security

Indexed keywords

INFORMATION DISSEMINATION; SECURITY SYSTEMS; SOCIETIES AND INSTITUTIONS;

BEST PRACTICES; CURRENT PRACTICES; EMPLOYEE INVOLVEMENT; INCIDENT MANAGEMENT; INFORMATION COLLECTIONS; INFORMATION SECURITY INCIDENTS; LARGE ORGANIZATIONS; QUALITATIVE INTERVIEWS;

SECURITY OF DATA;

EID: 84903700846     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1109/IMF.2014.9     Document Type: Conference Paper

References (24)

1. R. Anderson, C. Barton, R. B?hme, R. Clayton, M. Eeten, M. Levi, T. Moore, and S. Savage, "Measuring the Cost of Cybercrime," in 11th Workshop on the Economics of Information Security (WEIS'12), 2012
2. P. Cichonski, T. Millar, T. Grance, and K. Scarfone, "NIST Special Publication 800-61: Computer Security Incident Handling Guide," 2011, revision 2 (Draft)
3. "ISO/IEC 27035:2011 Information technology-Security techniques-Information security incident management," 2011
4. European Network and Information Security Agency (ENISA), "Good Practice Guide for Incident Management," 2010
5. E. Brewster, R. Griffiths, A. Lawes, and J. Sansbury, IT Service Management: A Guide for Itil Foundation Exam Candidates, 2nd ed. BCS, The Chartered Institute for IT, 2012
6. European Network and Information Security Agency (ENISA), "A basic collection of good practices for running a CSIRT," 2008
7. P. Kral, "Incident Handler's Handbook," SANS Institute Information Security Reading Room, December 2011
8. T. L. Orderl?ken, "Security Incident handling and reporting: A study of the difference between theory and practice," Gj?ik University College, 2005
9. M. G. Jaatun, E. Albrechtsen, M. B. Line, I. A. Toøndel, and O. H. Longva, "A framework for incident response management in the petroleum industry," International Journal of Critical Infrastructure Protection, vol. 2, pp. 26-37, 2009
10. M. G. Jaatun, E. Albrechtsen, M. Line, S. O. Johnsen, I. Waeroø O. H. Longva, and I. A. Toøndel, "A study of information security practice in a critical infrastructure application," in Autonomic and Trusted Computing, ser. Lecture Notes in Computer Science, C. Rong, M. G. Jaatun, F. E. Sandnes, L. T. Yang, and J. Ma, Eds. Springer Berlin Heidelberg, 2008, vol. 5060, pp. 527-539 [Online]. Available:
11. J. Cusick and G. Ma, "Creating an itil inspired incident management approach: Roots, response, and results," in Network Operations and Management Symposium Workshops (NOMS Wksps), 2010 IEEE/IFIP, 2010, pp. 142-148
12. R. Werlinger, K. Muldner, K. Hawkey, and K. Beznosov, "Preparation, detection, and analysis: the diagnostic work of IT security incident response," Information Management &Computer Security, vol. 18, no. 1, pp. 26-42, 2010
13. A. Ahmad, J. Hadgkiss, and A. Ruighaver, "Incident response teams-Challenges in supporting the organisational security function," Computers &Security, 2012
14. T. Herath and H. R. Rao, "Protection motivation and deterrence: a framework for security policy compliance in organisations," Eur J Inf Syst, vol. 18, no. 2, pp. 106-125, Apr 2009 [Online]. Available: http://dx.doi.org/ 10.1057/ejis.2009.6
15. B. Grobauer and T. Schreck, "Towards incident handling in the cloud: Challenges and approaches," in Proceedings of the 2010 ACM Workshop on Cloud Computing Security Workshop, ser. CCSW '10. New York, NY, USA: ACM, 2010, pp. 77-86 [Online]. Available: http://doi.acm.org/10.1145/1866835.1866850
16. A. Bhattacherjee, "Social Science Research: Principles, Methods, and Practices," 2012
17. B. J. Oates, Researching Information Systems and Computing. Sage Publications Limited, 2005
18. R. K. Yin, Case Study Research Design and Methods, 4th ed., ser. Applied Social Research Method Series. SAGE Publications, 2009, vol. 5
19. C. Robson, Real world research, 3rd ed. John Wiley &Sons Ltd., 2011
20. M. D. Myers and M. Newman, "The qualitative interview in IS research: Examining the craft," Information and organization, vol. 17, no. 1, pp. 2-26, 2007
21. C. Cassell and G. Symon, Essential Guide to Gualitative Methods in Organizational Research. Sage Publications Limited, 2004
22. D. R. Thomas, "A General Inductive Approach for Analyzing Qualitative Evaluation Data," American Journal of Evaluation, vol. 27, no. 2, pp. 237-246, 2006
23. D. Ashenden and A. Sasse, "CISOs and organisational culture: Their own worst enemy?" Computers &Security, vol. 39, pp. 396-405, 2013
24. A. Hale and D. Borys, "Working to rule, or working safely? Part 1: A state of the art review," Safety Science, 2012 [Online]. Available: http://www.sciencedirect.com/science/article/pii/S0925753512001312