Dissertation/Thesis Abstract

A phenomenological study of information security incidents experienced by information security professionals providing corporate information security incident management
by Burkhead, Randy L., Ph.D., Capella University, 2014, 159; 3682325
Abstract (Summary)

The security of digital information is paramount to the success of private organizations. Violating that security is a multi-billion-dollar criminal business and exploiting these vulnerabilities creates a single point of failure for operations. Thus, understanding the detection, identification, and response to information security incidents is critical to protecting all levels of infrastructure. The lived experiences of current professionals indicate 10 unique themes in regards to how information security incidents are addressed in private organizations. These unique themes led the researcher to offer several conclusions related to the importance of planning, communication, offensive capabilities, and integration with third-party organizations. Information security incident management is accomplished as an escalation process with multiple decision points leading to a restoration of services or security. The source of the incident is not often sought beyond the first external IP address but their purpose and intent are essential to information security incident management. The key lessons learned from professionals include the importance of having a plan, training the plan, and incorporating the human elements of security into information security incident response. Penetration testing as well a knowledge about threat and attack patterns are important to information security incident management for detection, containment, and remediation. External organizations play a major role in the management of information security incidents as fear, incompetence, and jurisdictional issues keep the private sector from working with government, military, and law enforcement organizations. These themes have wide reaching implications for practical application and future research projects.

Indexing (document details)
Advisor: Sharum, Bernard J.
Commitee: Brown, Steven A., Gagnon, Sharon L.
School: Capella University
Department: School of Business and Technology
School Location: United States -- Minnesota
Source: DAI-B 76/06(E), Dissertation Abstracts International
Source Type: DISSERTATION
Subjects: Information Technology
Keywords: Incident management, Information security, Information technology, Phenomenology
Publication Number: 3682325
ISBN: 9781321556353
Copyright © 2018 ProQuest LLC. All rights reserved. Terms and Conditions Privacy Policy Cookie Policy
ProQuest