Incident-centered information security: Managing a strategic balance between prevention and response
MetadataShow full item record
Information security strategies employ principles and practices grounded in both the prevention andresponse paradigms. The prevention paradigm aims at managing predicted threats. Although theprevention paradigm may dominate in contemporary commercial organizations, the response paradigm (aimed at managing unpredicted threats) retains an important role in protecting information security in today’s dynamic threat environment. This study provides an overarching security framework that focuses on managing the proper balance between prevention and response paradigms. We conduct a comparative case study with three European organizations. This study analyzes and empirically confirms how and why organizations balance between their prevention and response strategies.
Showing items related by title, author, creator and subject.
Pojanavatee, Sasipa (2013)Mutual funds are emerging as an opportunity for investors to automatically diversify their investments in such a way that all their money is pooled and the investment decisions are left to a professional manager. There ...
Robertson, Mary Eileen (2006)The health industry in Canada, as well as in other industrial countries, has been in the process of reform for many years. While such reform has been attributed to fiscal necessity due to increased health costs, the ...
An exploration of the global development of emerging country multinationals : a study of strategic ambitions and talent management in China and IndiaLiu, Yi (2012)Since Jim O’Neill, the Goldman Sachs economist, coined the acronym of the BRIC countries in 2001 the concept has attracted an infectious logic. The growth of the four BRIC countries, Brazil, Russia, India, and China, is ...