Enhancing information security management through organisational learning
Grant number: DP160102277 | Funding period: 2016 - 2020
This project aims to help organisations to protect their information resources from complex and evolving information security threats. This is highly significant for organisations; evidence shows that despite financing information security programs, the incidence of information security breaches is still increasing. To address this issue, the project plans to use a security learning process model which will be refined through a series of action research cycles. The model incorporates security lessons and insights learnt from incidents into routine security practices. By institutionalising lessons learnt from security incidents, organisations may be able to apply more effective and adaptive s..View full description
Related publications (5)
Cybersecurity Incident Response in Organizations: An Exploratory Case Study and Process Model of Situation Awareness
Atif Ahmad, Sean B Maynard, Kevin C Desouza, James Kotsias, Monica T Whitty, Richard L Baskerville
Organized, sophisticated and persistent cyber-threat-actors pose a significant challenge to large, high-value organizations. They ..
How integration of cyber security management and incident response enables organizational learning
Atif Ahmad, Kevin C Desouza, Sean B Maynard, Humza Naseer, Richard L Baskerville
Digital assets of organizations are under constant threat from a wide assortment of nefarious actors. When threats materialize, th..
Strategically-motivated advanced persistent threat: Definition, process, tactics and a disinformation model of counterattack
Atif Ahmad, Jeb Webb, Kevin C Desouza, James Boorman
Advanced persistent threat (APT) is widely acknowledged to be the most sophisticated and potent class of security threat. APT refe..