Högskolan i Skövde

his.sePublications
Change search
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • apa-cv
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf
Security-related stress: A perspective on information security risk management
Department of Computer Science Luleå University of Technology Luleå, Sweden.ORCID iD: 0000-0003-1692-5721
University of Skövde, School of Informatics. University of Skövde, Informatics Research Environment. (Informationssystem (IS), Information Systems)ORCID iD: 0000-0002-1436-2980
2019 (English)In: 2019 International Conference on Cyber Security and Protection of Digital Services (Cyber Security), IEEE, 2019Conference paper, Published paper (Refereed)
Abstract [en]

In this study, the enactment of information security risk management by novice practitioners is studied by applying an analytical lens of security-related stress. Two organisations were targeted in the study using a case study approach to obtain data about their practices. The study identifies stressors and stress inhibitors in the ISRM process and the supporting ISRM tools and discusses the implications for practitioners. For example, a mismatch between security standards and how they are interpreted in practice has been identified. This mismatch was further found to be strengthened by the design of the used ISRM tools. Those design shortcomings hamper agility since they may enforce a specific workflow or may restrict documentation. The study concludes that security-related stress can provide additional insight into security-novice practitioners' ISRM challenges. 

Place, publisher, year, edition, pages
IEEE, 2019.
Keywords [en]
Compliance, Information security, Information security risk management, Management, Novices, Stress, Tools, Information services, Security of data, Stresses, Case study approach, Information security risk managements, Security standards, Risk management
National Category
Information Systems, Social aspects
Research subject
Information Systems
Identifiers
URN: urn:nbn:se:his:diva-17942DOI: 10.1109/CyberSecPODS.2019.8884877Scopus ID: 2-s2.0-85075007461ISBN: 978-1-7281-0229-0 (electronic)ISBN: 978-1-7281-0230-6 (print)OAI: oai:DiVA.org:his-17942DiVA, id: diva2:1374024
Conference
5th International Conference on Cyber Security and Protection of Digital Services, Cyber Security 2019, Department of Computer Science, University of Oxford, United Kingdom, 3-4 June 2019
Available from: 2019-11-28 Created: 2019-11-28 Last updated: 2023-06-20Bibliographically approved

Open Access in DiVA

No full text in DiVA

Other links

Publisher's full textScopus

Authority records

Lundgren, MartinBergström, Erik

Search in DiVA

By author/editor
Lundgren, MartinBergström, Erik
By organisation
School of InformaticsInformatics Research Environment
Information Systems, Social aspects

Search outside of DiVA

GoogleGoogle Scholar

doi
isbn
urn-nbn

Altmetric score

doi
isbn
urn-nbn
Total: 185 hits
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • apa-cv
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf