Examining the suitability of industrial safety management approaches for information security incident management. (14th March 2016)
- Record Type:
- Journal Article
- Title:
- Examining the suitability of industrial safety management approaches for information security incident management. (14th March 2016)
- Main Title:
- Examining the suitability of industrial safety management approaches for information security incident management
- Authors:
- Line, Maria Bartnes
Albrechtsen, Eirik - Abstract:
- Abstract : Purpose: – This paper aims to discuss whether recent theoretical and practical approaches within industrial safety management might be applicable to, and solve challenges experienced in, the field of information security, specifically related to incident management. Design/methodology/approach: – A literature review was carried out. Findings: – Principles, research and experiences on the issues of plans, training and learning in the context of industrial safety management would be suitable for adoption into the field of information security incident management and aid in addressing current challenges. Research limitations/implications: – There are a number of reasons why approaches from industrial safety management have something to offer to information security incident management: the former field is more mature and has longer traditions, there is more organizational research on industrial safety issues than on information security issues so far, individual awareness is higher for industrial safety risks and worker participation in systematic industrial safety work is ensured by law. More organizational research on information security issues and continuous strengthening of individual security awareness would push information security to further maturity levels where current challenges are solved. Practical implications: – This paper shows that the field of information security incident management would gain from closer collaborations with industrial safetyAbstract : Purpose: – This paper aims to discuss whether recent theoretical and practical approaches within industrial safety management might be applicable to, and solve challenges experienced in, the field of information security, specifically related to incident management. Design/methodology/approach: – A literature review was carried out. Findings: – Principles, research and experiences on the issues of plans, training and learning in the context of industrial safety management would be suitable for adoption into the field of information security incident management and aid in addressing current challenges. Research limitations/implications: – There are a number of reasons why approaches from industrial safety management have something to offer to information security incident management: the former field is more mature and has longer traditions, there is more organizational research on industrial safety issues than on information security issues so far, individual awareness is higher for industrial safety risks and worker participation in systematic industrial safety work is ensured by law. More organizational research on information security issues and continuous strengthening of individual security awareness would push information security to further maturity levels where current challenges are solved. Practical implications: – This paper shows that the field of information security incident management would gain from closer collaborations with industrial safety management, both in research and in practical loss prevention in organizations. The ideas discussed in this paper form a basis for further research on practical implementations and case studies. Originality/value: – The main audience of this paper includes information security researchers and practitioners, as they will find inspirational theories and experiences to bring into their daily work and future projects. … (more)
- Is Part Of:
- Information and computer security. Volume 24:Number 1(2016)
- Journal:
- Information and computer security
- Issue:
- Volume 24:Number 1(2016)
- Issue Display:
- Volume 24, Issue 1 (2016)
- Year:
- 2016
- Volume:
- 24
- Issue:
- 1
- Issue Sort Value:
- 2016-0024-0001-0000
- Page Start:
- 20
- Page End:
- 37
- Publication Date:
- 2016-03-14
- Subjects:
- Management -- Safety -- Organizational development -- Information security
Computer security -- Management -- Periodicals
Computer networks -- Security measures -- Periodicals
Data protection -- Management -- Periodicals
658.47 - Journal URLs:
- http://www.emeraldinsight.com/loi/ics ↗
http://www.emeraldinsight.com/ ↗ - DOI:
- 10.1108/ICS-01-2015-0003 ↗
- Languages:
- English
- ISSNs:
- 2056-4961
- Deposit Type:
- Legaldeposit
- View Content:
- Available online (eLD content is only available in our Reading Rooms) ↗
- Physical Locations:
- British Library DSC - 4481.796000
British Library DSC - BLDSS-3PM
British Library HMNTS - ELD Digital store - Ingest File:
- 8133.xml