امنیت شبکه در سال 2016: مردم، فناوری و فرایندها Cybersecurity in 2016: People, technology, and processes
- نوع فایل : کتاب
- زبان : انگلیسی
- ناشر : Elsevier
- چاپ و سال / کشور: 2017
توضیحات
رشته های مرتبط مهندسی فناوری اطلاعات و مهندسی کامپیوتر
گرایش های مرتبط شبکه های کامپیوتری
مجله افق های تجارت – Business Horizons
دانشگاه دانشکده مدیریت Telfer، اتاوا، کانادا
نشریه نشریه الزویر
گرایش های مرتبط شبکه های کامپیوتری
مجله افق های تجارت – Business Horizons
دانشگاه دانشکده مدیریت Telfer، اتاوا، کانادا
نشریه نشریه الزویر
Description
In soliciting articles for this issue, we sought to go beyond the conventional and beyond the dramatic. There seems to be a widespread culture of shared negative experiences surrounding cybersecurity. Contributing to alarmist discourses does little to reassure managers and even less to encourage constructive research. Our goal wasto provide clear and cogent perspectives that might facilitate positive information exchanges. If one thing is clear, itisthat cybersecurity is more than just a technical issue. It involves unique alchemies between technologies, people, and processes–—the latter in the form of overarching regulations and laws. As such, we have divided the articles into these three sections, starting with two articles on the most important element: people. The first article–—by Dang-Pham, Pittayachawan, and Bruno–—considers how and when security advice is shared by employees. Research supports the effi- cacy of security-centric cultures. However, more often than not, managing security is seen as a top-down exercise, where a lack of compliance is met with disciplinary action. The authors analyze some of the underlying personal and structural causes impeding security cultures, asserting they are more circular than hierarchical, and offer some practical insights for both researchers and managers who wish to develop and sustain peer-managed security cultures in their organizations. The role of Chief Information Security Officer, or CISO, is a recent creation in organizations. The second article–—by Hooper and McKissack–—outlines the responsibilities of this role, its place in the organization, and the type of leadership it demands if it is to succeed.