000000160 001__ 160
000000160 005__ 20130522141950.0
000000160 037__ $$aLERSSE-PRESENTATION-2008-073
000000160 041__ $$aeng
000000160 100__ $$aKonstantin Beznosov
000000160 245__ $$aManagement of IT Security in Organizations: What Makes It Hard?
000000160 260__ $$c2008-07-22
000000160 300__ $$a43p
000000160 520__ $$aSecurity of information technology (IT) has become a critical issue for organizations as they must protect their information assets from unauthorized access and quickly resume business activities after security breaches. In order for technological solutions to provide effective support to IT security practitioners, tool developers need to understand better not only the technical, but also the human and organizational dimensions of IT security. To date, there is little empirical evidence about how human, organizational, and technological factors impact the processes of managing IT security. Moreover, little is known about the responsibilities and roles of security practitioners or the effectiveness of their tools and security management practices. The Human, Organization, and Technology Centred Improvement of IT Security Administration (HOT Admin) research project is working to fill this gap. We use qualitative methods to study experiences of IT security practitioners along several themes including: unique characteristics of IT security vs. general IT, the challenges the security professionals face within the organization, and their activities and interactions. We present our findings to date and discuss the implications of these findings on tool development and research.
000000160 6531_ $$aHOT Admin
000000160 6531_ $$aSecurity Tools
000000160 6531_ $$aUsable Security
000000160 6531_ $$aQualitative Analysis
000000160 8560_ $$fqiangw@ece.ubc.ca
000000160 8564_ $$uhttp://lersse-dl.ece.ubc.ca/record/160/files/160.pdf$$yTransfer from CDS 0.99.7
000000160 909C4 $$pKonstantin Beznosov, “Management of IT Security in Organizations: What Makes It Hard?” talk given at the SAP Research, Campus-based Engineering Center, Karlsruhe, Germany, 08 July 2008.
000000160 980__ $$aPRESENTATION