000000142 001__ 142
000000142 005__ 20130522141958.0
000000142 037__ $$aLERSSE-POSTER-2008-004
000000142 041__ $$aeng
000000142 100__ $$aKirstie Hawkey, Kasia Muldner and Konstantin Beznosov
000000142 245__ $$aSearching for the Right Fit: Considerations when Balancing IT Security Management Model Tradeoffs
000000142 260__ $$c2008-02-07
000000142 520__ $$aThe effectiveness of IT security professionals in an organization is influenced not only by the usability of security management tools, but also by the fit of an organization's security management model (SMM). Finding the right SMM is critical and yet can be challenging, as there are tradeoffs inherent with each approach, and the implications of these tradeoffs are not clear. We present a case study of one academic institution that created a centralized security team, but disbanded it in favour of a more distributed approach three years later. We contrast this organization's experiences with expectations from industry standards. We found a number of mismatches between the expected SMM outcomes and the reality of our participants' experiences. While some of these mismatches could be anticipated, as they arose from the case study's organizational characteristics that made it difficult to follow standards precisely, others were the result of unexpected aspects influencing an SMM's impact on the organization.
000000142 6531_ $$aHOT Admin
000000142 6531_ $$aSecurity Management Model
000000142 6531_ $$aCase study
000000142 8560_ $$fkmuldner@ece.ubc.ca
000000142 8564_ $$uhttp://lersse-dl.ece.ubc.ca/record/142/files/142.pdf$$yTransfer from CDS 0.99.7
000000142 909C4 $$pKirstie Hawkey, Kasia Muldner, Konstantin Beznosov, "Searching for the Right Fit: Considerations when Balancing IT Security Management Model Tradeoffs", Poster presented at the 7th Annual Conference & Exposition Privacy & Security Conference, Victoria, B.C., February 7-8, 2008.
000000142 980__ $$aPOSTER