Home > Technical Reports > Searching for the Right Fit: A Case Study of IT Security Management Model Tradeoffs > MARC 
000000139 001__ 139
000000139 005__ 20130522141946.0
000000139 037__ $$aLERSSE-REPORT-2007-024
000000139 041__ $$aeng
000000139 100__ $$aKirstie Hawkey
000000139 100__ $$aKasia Muldner
000000139 100__ $$aKonstantin Beznosov
000000139 245__ $$aSearching for the Right Fit: A Case Study of IT Security Management Model Tradeoffs
000000139 260__ $$c2007-11-16
000000139 300__ $$a23p
000000139 520__ $$aThe usability of security systems within an organization is impacted not only by tool interfaces but also by the security management model (SMM) of the IT security team. Finding the right SMM is critical and yet can be challenging, as there are tradeoffs inherent with each approach. We present a case study of one post-secondary educational institution that created a centralized security team, but disbanded it in favour of a more distributed approach three years later. The case study consists of interviews with ten IT staff from across the organization who gave us their diverse perspectives of the realities of managing security in a decentralized post-secondary organization. We contrast this organization’s experiences with SMMS with expectations from industry standards and derive organizational factors that impact the success of the models. These factors highlight the importance of considering both the organization’s security goals as well as its structure when evaluating potential SMMs. Furthermore, top management support, security policies, and a security team with vested authority, along with the organization’s prior security management history, impact the success of a given SMM.
000000139 6531_ $$ahot admin
000000139 6531_ $$afield study
000000139 6531_ $$aSecurity Management
000000139 6531_ $$aSecurity Tasks
000000139 6531_ $$aUsable Security
000000139 6531_ $$aCollaboration
000000139 8560_ $$fqiangw@ece.ubc.ca
000000139 8564_ $$uhttp://lersse-dl.ece.ubc.ca/record/139/files/139.pdf$$yTransfer from CDS 0.99.7
000000139 909C4 $$pKirstie Hawkey, Kasia Muldnery, and Konstantin Beznosov, "Searching for the Right Fit: A Case Study of IT Security Management Model Tradeoffs", Laboratory for Education and Research in Secure Systems Engineering, Vancouver, Canada, University of British Columbia, technical report LERSSE-TR-2007-03, 16 November, 2007, pp.23.
000000139 980__ $$aREPORT
LERSSE Digital Library :: Search :: Submit :: Personalize :: Help
Powered by Invenio v1.1.1
Maintained by info@invenio-software.org