000000130 001__ 130
000000130 005__ 20130522141942.0
000000130 037__ $$aLERSSE-RefConfPaper-2007-023
000000130 041__ $$aeng
000000130 100__ $$aDavid Botta
000000130 100__ $$aRodrigo Werlinger
000000130 100__ $$aAndré Gagné
000000130 100__ $$aKonstantin Beznosov
000000130 100__ $$aLee Iverson
000000130 100__ $$aSidney Fels
000000130 100__ $$aBrian Fisher
000000130 245__ $$aTowards Understanding IT Security Professionals and Their Tools
000000130 260__ $$c2007-03-07
000000130 520__ $$aWe report preliminary results of our ongoing field study of IT professionals who are involved in security management. We interviewed a dozen practitioners from five organizations to understand their workplace and tools. We analyzed the interviews using a variation of Grounded Theory and predesigned themes. Our results suggest that the job of IT security management is distributed across multiple employees, often affiliated with different organizational units or groups within a unit and responsible for different aspects of it. The workplace of our participants can be characterized by their responsibilities, goals, tasks, and skills. Three skills stand out as significant in the IT security management workplace: inferential analysis, pattern recognition, and bricolage.
000000130 6531_ $$aHOT Admin
000000130 6531_ $$aSOUPS
000000130 6531_ $$aUsable Security
000000130 6531_ $$aIT Security Management
000000130 8560_ $$fandreg@ece.ubc.ca
000000130 8564_ $$uhttp://lersse-dl.ece.ubc.ca/record/130/files/130.pdf$$yTransfer from CDS 0.99.7
000000130 909C4 $$pDavid Botta, Rodrigo Werlinger, André Gagné, Konstantin Beznosov, Lee Iverson, Sidney Fels, Brian Fisher, "Towards Understanding IT Security Professionals and Their Tools" in Proceedings of the Symposium on Usable Privacy and Security (SOUPS), Carnegie Mellon University, Pittsburgh, PA, USA, July 18-20, 2007, pp.100-111.
000000130 980__ $$aRefConfPaper