Dissertation/Thesis Abstract

The author has requested that access to this graduate work be delayed until 2020-01-02. After this date, this graduate work will be available on an open access basis.
Enhancing the Design of a Cybersecurity Risk Management Solution for Communities of Trust
by Fulford, James E., Jr., D.B.A., University of South Florida, 2018, 180; 10979126
Abstract (Summary)

Research into cybersecurity risks and various methods of evaluating those threats has become an increasingly important area of academic and practitioner investigations. Of particular interest in this field is enhancing the designs and informing capabilities of cybersecurity risk management solutions for users who desire to understand how organizations are impacted when such risks are exploited. Many of the cybersecurity risk management solutions are extremely technical and require their users to have a commensurate level of technical acumen. In the situation evaluated during this research project, the founders of the company being researched had created a highly technical risk management solution composed of sophisticated networking and cryptography components. The company’s management team, on the other hand, had very little cybersecurity industry background but needed to effectively communicate the specialized capabilities of the solution to potential customers and business partners in an understandable way. In this case, improving the company’s solution design to better convey its technical foundation both inside and outside the company was required. Design Science Research (DSR) offers a methodology that was created to help analyze, create, and evaluate design artifacts that can identify useful ways to work through technical challenges such as those faced by the company. The Elaborated Action Design Research (eADR) methodology can be used to further improve design artifacts through an iterative process that is easily understood by practitioners and academics and grounded in theory. When DSR and eADR methodologies are used together, the result is the creation and demonstration of informing artifacts which will address technical cybersecurity risk evaluation and communication issues. This research project contains a case study, an accompanying technical note, and two research papers which will address research questions informed by the DSR methodology process in response to related communication and compliance issues noted in the cybersecurity risk management problem space.

Indexing (document details)
Advisor: Hevner, Alan R., DeSerranno, Allen R.
Commitee: Berndt, Donald, Mullarkey, Matthew
School: University of South Florida
Department: Business Administration
School Location: United States -- Florida
Source: DAI-B 80/05(E), Dissertation Abstracts International
Subjects: Business administration, Information Technology
Keywords: Compliance, Conceptual model, Design science research, Elaborated action design research, Fitness-utility model, Nist csf
Publication Number: 10979126
ISBN: 9780438779952
Copyright © 2019 ProQuest LLC. All rights reserved. Terms and Conditions Privacy Policy Cookie Policy