Incident-centered information security: Managing a strategic balance between prevention and response
Access Status
Authors
Date
2014Type
Metadata
Show full item recordCitation
Source Title
ISSN
Collection
Abstract
Information security strategies employ principles and practices grounded in both the prevention andresponse paradigms. The prevention paradigm aims at managing predicted threats. Although theprevention paradigm may dominate in contemporary commercial organizations, the response paradigm (aimed at managing unpredicted threats) retains an important role in protecting information security in today’s dynamic threat environment. This study provides an overarching security framework that focuses on managing the proper balance between prevention and response paradigms. We conduct a comparative case study with three European organizations. This study analyzes and empirically confirms how and why organizations balance between their prevention and response strategies.
Related items
Showing items related by title, author, creator and subject.
-
Nguyen, Hong-Oanh; Van Balen, Michael; Ingram, Aaron; Hurd, Stephen; Chheetri, Prem; Thai, Vinh; Warren, Matthew; Booi, Kam; Oloruntoba, Richard (2022)By volume, about 99% of Australia’s trade is carried by sea mainly through the Indo-Pacific region. Australia currently imports 90% of liquid fuel from other countries, primarily Japan, Korea and Singapore. Global shipping ...
-
Pojanavatee, Sasipa (2013)Mutual funds are emerging as an opportunity for investors to automatically diversify their investments in such a way that all their money is pooled and the investment decisions are left to a professional manager. There ...
-
Barrie, Glenn; Whyte, Andrew; Bell, Janice (2017)© 2017 ACM. The Internet of Things (IoT) paradigm with its vast range of heterogeneous connecting technologies heralds a new era for internet research, especially given that this explosion in connectivity for devices or ...