Titel: Security-aware organisational cultures as a starting point for mitigating socio-technical risks
Sprache: Englisch
Autor/Autorin: Übelacker, Sven
Schlagwörter: human factors;insider threat;organisational culture;security;security awareness;social engineering
Erscheinungsdatum: 2013
Quellenangabe: http://eprints.eemcs.utwente.nl/23704/
Zusammenfassung (englisch): This extended abstract briefly introduces Hofstede's three leveled model of human mental programming which captures the unique mental constitution of a person. These levels devide the vague "human factor" in more approachable categories. In the following sections each category is addressed and presented seperately according to research found and regarding security-aware behaviour. By including universal human behaviour, characteristics of organisational and national cultures as well as (occupational) grouping of personality traits of employees, we might be able to identify emerging social threats. Furthermore, assessing social risks could help to develop guidelines for cultural change towards a more security-aware organisational culture. As the influence of an organisation on external factors (other than their own organisational culture) tends to be minimal, developing, allowing, and applying cultural changes can be a promising approach in mitigating socio-technical risks.
URI: http://tubdok.tub.tuhh.de/handle/11420/1132
URN: urn:nbn:de:gbv:830-tubdok-12271
DOI: 10.15480/882.1130
ISBN: 978-3-88579-614-5
Institut: Sicherheit in verteilten Anwendungen E-15
Security in Distributed Applications E-15
Dokumenttyp: InProceedings (Aufsatz / Paper einer Konferenz etc.)
Förderprogramm: info:eu-repo/grantAgreement/EC/FP7/318003
Enthalten in den Sammlungen:tub.dok

Alle Ressourcen in diesem Repository sind urheberrechtlich geschützt.