Return to search

Challenges, collaborative interactions, and diagnosis performed by IT security practitioners : an empirical study

This thesis investigates four different aspects of information security management: challenges
faced by security practitioners, interactive collaborations among security practitioners and other
stakeholders, diagnostic work performed by security practitioners during the response to incidents,
and factors that impact the adoption of an intrusion detection system in one organization. Our
approach is based on qualitative analyzes of empirical data from semi-structured interviews and
participatory observation. For each theme under study, the contributions of the qualitative analysis
are twofold. First, we provide a richer understanding of the main factors that affect the security
within organizations. Second, equipped with this richer understanding, we provide recommendations
on how to improve security tools, along with opportunities for future research.

Our findings contribute to the understanding of the human, organizational, and technological
factors that affect security in organizations and the effectiveness of security tools. Our work also
highlights the need for continued refinement of how factors interplay by obtaining more rich data
(e.g., contextual inquiry), and the need to generalize and validate these findings through other
sources of information to study how these factors interplay (e.g., surveys).

Identiferoai:union.ndltd.org:LACETR/oai:collectionscanada.gc.ca:BVAU./1013
Date11 1900
CreatorsWerlinger, Rodrigo
PublisherUniversity of British Columbia
Source SetsLibrary and Archives Canada ETDs Repository / Centre d'archives des thèses électroniques de Bibliothèque et Archives Canada
LanguageEnglish
Detected LanguageEnglish
TypeElectronic Thesis or Dissertation
Format5344431 bytes, application/pdf

Page generated in 0.0019 seconds