To main content

Information security incident management: Identified practice in large organizations

Abstract

This paper presents a case study on current practice of information security incident management in three large organizations.
Qualitative interviews, document studies, and a survey have been performed. Our analysis shows that the organizations have
plans and procedures in place, however, not all of these are well established throughout the organizations. Some challenges were
prominent in all three organizations, which were related to communication, information collection and dissemination, employee
involvement, and allocation of responsibilities. This paper presents our main findings from the study, including current practice
for incident management and more details on the identified challenges, and some recommendations for further studies in this field.

Category

Academic chapter/article/Conference paper

Language

English

Author(s)

Affiliation

  • Norwegian University of Science and Technology
  • SINTEF Digital / Software Engineering, Safety and Security

Year

2014

Publisher

IEEE

Book

8th International Conference on IT Security Incident Management and IT Forensics (IMF 2014), May 12-14, 2014, Münster, Germany

ISBN

978-1-4799-4330-2

Page(s)

27 - 46

View this publication at Cristin