Return to search

Challenges, collaborative interactions, and diagnosis performed by IT security practitioners : an empirical study

This thesis investigates four different aspects of information security management: challenges
faced by security practitioners, interactive collaborations among security practitioners and other
stakeholders, diagnostic work performed by security practitioners during the response to incidents,
and factors that impact the adoption of an intrusion detection system in one organization. Our
approach is based on qualitative analyzes of empirical data from semi-structured interviews and
participatory observation. For each theme under study, the contributions of the qualitative analysis
are twofold. First, we provide a richer understanding of the main factors that affect the security
within organizations. Second, equipped with this richer understanding, we provide recommendations
on how to improve security tools, along with opportunities for future research.

Our findings contribute to the understanding of the human, organizational, and technological
factors that affect security in organizations and the effectiveness of security tools. Our work also
highlights the need for continued refinement of how factors interplay by obtaining more rich data
(e.g., contextual inquiry), and the need to generalize and validate these findings through other
sources of information to study how these factors interplay (e.g., surveys). / Applied Science, Faculty of / Electrical and Computer Engineering, Department of / Graduate

Identiferoai:union.ndltd.org:UBC/oai:circle.library.ubc.ca:2429/1013
Date11 1900
CreatorsWerlinger, Rodrigo
PublisherUniversity of British Columbia
Source SetsUniversity of British Columbia
LanguageEnglish
Detected LanguageEnglish
TypeText, Thesis/Dissertation
Format5344431 bytes, application/pdf
RightsAttribution-NonCommercial-NoDerivatives 4.0 International, http://creativecommons.org/licenses/by-nc-nd/4.0/

Page generated in 0.0018 seconds