Dynamic Capabilities in Cybersecurity Intelligence: A Meta-Synthesis to Enhance Protection Against Cyber Threats

2023 | Communications of the Association for Information Systems | Citations: 0

Authors: Pigola, Angélica; Costa, Priscila da

Abstract: ... Expand

Abstract: Collapse

Topics: IT security data security database system innovation management IT security threat

Methods: case study synthesis design science maturity model capability maturity model integration

Theories: dynamic capabilities theory resource based view of the firm

Employee responses to information security related stress: Coping and violation intention

2023 | Information Systems Journal | Citations: 1

Authors: Yazdanmehr, Adel; Li, Yuan; Wang, Jingguo

Abstract: Studies on employee responses to the information security policy (ISP) demands t ... Expand

Abstract: Studies on employee responses to the information security policy (ISP) demands to show that employees who experience stress over the demands would resort to emotion-focused coping to alleviate the stress and subsequently violate the ISP. However, their intent to engage in problem-focused coping to meet the ISP demands and possibly reduce ISP violations has yet to be analysed. We argue that both types of coping responses coexist in employee responses to ISP demands and they together influence ISP violation intention. Drawing upon the Transactional Model of Stress and Coping, we examine how security-related stress (SRS) triggers inward and outward emotion-focused coping, and problem-focused coping to the ISP demands, which together influence employee ISP violations. We also examine how ISP-related self-efficacy and organisational support moderate the effects of SRS on coping responses. We surveyed 200 employees in the United States to test our model. The results indicate that SRS triggers all three coping responses, and ISP-related self-efficacy and organisational support reduce the effects of SRS on inward and outward emotion-focused coping. Problem-focused coping then decreases ISP violation intention, whereas inward and outward emotion-focused coping increases it. The model was further verified with ISP compliance as the outcome construct, which yielded consistent results. Understanding various coping responses to SRS and the factors that facilitate or inhibit the responses can assist managers in effectively designing and implementing the ISP to reduce employee ISP violations. Collapse

Topics: self efficacy security policy data security problem solving internet technology

Methods: survey descriptive statistic partial least squares regression survey design factor analysis

Theories: technology threat avoidance theory

An Examination of Gain- and Loss-Framed Messaging on Smart Home Security Training Programs

2022 | Information Systems Frontiers | Citations: 0

Authors: Plachkinova, Miloslava; Menard, Philip

Abstract: The Internet of Things (IoT) has gained popularity among home consumers due to i ... Expand

Abstract: The Internet of Things (IoT) has gained popularity among home consumers due to its characteristics related to automation, information gathering, and purported physical security benefits. In an effort to capitalize on an expanding market, IoT developers have rushed products to market without proper due diligence regarding device cybersecurity. By being more focused on the utility and convenience of IoT devices without being concerned about their devices’ inherent security flaws, consumers may be unwittingly putting themselves at risk. Gain- and loss-framed messaging has been an extensively studied form of persuasive communication in other research fields but has not been previously examined in the context of information security research. Using an experimental design, we assess the efficacy of applying gain- and loss-framed principles to a security education training and awareness (SETA) program designed to bolster IoT users’ concerns related to pertinent IoT-based threats and provide information about their corresponding countermeasures. We found that for consumers with low initial IoT security concerns, loss-framed messaging is more effective in increasing security concerns. For consumers with higher initial concerns, messages focusing on desirable outcomes, regardless of an overall gain- or loss-framed message valence, are effective at increasing IoT security concerns. Collapse

Topics: mobile system internet of things smart home privacy user training

Methods: experiment multivariate analysis of variance experimental group survey design artifact

Multi-sided platforms in competitive B2B networks with varying governmental influence – a taxonomy of Port and Cargo Community System business models

2022 | Electronic Markets | Citations: 0

Authors: Tessmann, Ruben; Elbert, Ralf

Abstract: Our knowledge on differences in business model characteristics of thriving and f ... Expand

Abstract: Our knowledge on differences in business model characteristics of thriving and failing Multi-Sided Platforms in competitive B2B networks (B2B-MSP) and potential influences of increasing governmental involvement remains fragmented. This study develops a taxonomy to classify special B2B-MSP with varying governmental influence in the supply chain and transportation context, viz. Port and Cargo Community Systems (CS). Based on the classification of 44 international CS, we identify four archetypes using cluster analysis. The taxonomy provides practitioners with a differentiated view on the configuration options of CS business models including the involvement of governmental institutions, while the presented archetypes contribute an aggregated view of CS business models. The statistical analysis of our results provides initial explanatory approaches on CS business model dimension interdependencies, thereby laying the basis for a deeper understanding of sectoral and geographic differences of B2B-MSP and their diffusion dynamics as well as facilitating a higher contextualization of future research. Collapse

Topics: business model business-to-business data governance analytical information system digital business model

Methods: cluster analysis data imputation literature study hierarchical clustering decision tree classification

Plausible Pictures For Data Governance: A Narrative Network Approach

2022 | European Conference On Information Systems | Citations: 2

Authors: Wibisono, Arif; Sammon, David; Heavin, Ciara

Abstract: Workaround-centric data activities (WCDA) can impact data integrity/quality. De ... Expand

Abstract: Workaround-centric data activities (WCDA) can impact data integrity/quality. Despite this, one can view WCDA as an enhancement to organisational Data Governance (DG) maturity. However, these WCDA are primarily undocumented and poorly understood. Therefore, we need a means of creating plausible pictures for DGby modelling WCDA visually. This study draws on the theory of organisational routines to develop WCDA modelling rules. It is the first study to leverage the Narrative Network (NN) approach as a conceptual lens to model WCDA visually. We identify five WCDA modelling rules: 1) a narrative fragment must come from a process actor, 2) a narrative fragment has three attributes: actor, action & resource, 3) all attributes in a narrative fragment establish the action type, 4) a narrative fragment must contain a data activity, and 5) a narrative fragment data activity must follow a standard naming convention. In conclusion, we discuss the advantages of our approach. Collapse

Topics: data governance website data integrity firewall

Methods: business process model and notation modeling language theoretical contribution theory development

Theories: organizational routines theory

Demystifying analytical information processing capability: The case of cybersecurity incident response

2021 | Decision Support Systems | Citations: 7

Authors: Naseer, Humza; Maynard, Sean B.; Desouza, Kevin C.

Abstract: Little is known about how organizations leverage business analytics (BA) to deve ... Expand

Abstract: Little is known about how organizations leverage business analytics (BA) to develop, process, and exploit analytical information in cybersecurity incident response (CSIR). Drawing on information processing theory (IPT), we conducted a field study using a multiple case study design to answer the following research question: How do organizations exploit analytical information in the process of cybersecurity incident response by using business analytics? We developed a theoretical framework that explains how organizations respond to the dy­ namic cyber threat environment by exploiting analytical information processing capability in the CSIR process. This, in turn, leads to positive outcomes in enterprise security performance, delivering both strategic and financial benefits. Our findings contribute to the BA and cybersecurity literature by providing useful insights into BA applications and the facilitation of analytics-driven decision making in CSIR. Further, they contribute to IPT by providing new insights about analytical information needs, mechanisms to seek analytical information, and analytical information use in the process of CSIR. Collapse

Topics: IT security IT security threat analytical information system decision making malware

Methods: case study qualitative interview theory development multiple case study anomaly detection

Theories: information processing theory

Topological Data Analysis for Enhancing Embedded Analytics for Enterprise Cyber Log Analysis and Forensics

2020 | HICSS | Citations: 0

Authors: Bihl, Trevor J; Gutierrez, Robert J; Bauer, Kenneth W; Boehmke, Bradley C; Saie, Cade

Abstract: Forensic analysis of logs is one responsibility of an enterprise cyber defense t ... Expand

Abstract: Forensic analysis of logs is one responsibility of an enterprise cyber defense team; inherently, this is a big data task with thousands of events possibly logged in minutes of activity. Logged events range from authorized users typing incorrect passwords to malignant threats. Log analysis is necessary to understand current threats, be proactive against emerging threats, and develop new firewall rules. This paper describes embedded analytics for log analysis, which incorporates five mechanisms: numerical, similarity, graph-based, graphical analysis, and interactive feedback. Topological Data Analysis (TDA) is introduced for log analysis with TDA providing novel graph-based similarity understanding of threats which additionally enables a feedback mechanism to further analyze log files. Using real-world firewall log data from an enterprise-level organization, our end-to-end evaluation shows the effective detection and interpretation of log anomalies via the proposed process, many of which would have otherwise been missed by traditional means. Collapse

Topics: firewall digital forensics open source analytical information system big data

Methods: computational algorithm anomaly detection data transformation principal component analysis

IT value creation in public sector: how IT-enabled capabilities mitigate tradeoffs in public organisations

2020 | European Journal of Information Systems | Citations: 0

Authors: Goh, Jie Mein; Arenas, Alvaro E.

Abstract: Governments today are striving to improve services in the public sector through ... Expand

Abstract: Governments today are striving to improve services in the public sector through digital transformation programs but face tremendous pressures from multiple fronts (economy, national security, healthcare, education, etc.). Even when worldwide enterprise IT spending for the government and education markets has been increasing and is expected to surpass $652 billion in 2023 to cater to such transformation programs, 80% of the government transformation efforts failed to achieve expected results. A plausible reason for this lacklustre performance could be the presence of tradeoffs or conflicts that is particularly salient in public organisations. To better understand the mechanisms by which IT enables or inhibits capabilities of the public organisations in attaining public value, we adopt a conflict resolution lens to study how information technology (IT) enabled capabilities to mitigate these tradeoffs. Using a dataset collected from public organisations in a European country unreeling from a financial crisis, we examine the processes by which IT enables public organisations to manage the tradeoffs arising from conflicting value-based goals. We identify three mitigation strategies facilitated via IT-enabled organisational capabilities – bias, tunnelling and hybridisation. This paper contributes to the understanding of how IT mitigates value-based tradeoffs in public organisations to achieve public value. Collapse

Topics: value creation firewall government system IS value information technology capability

Methods: qualitative interview theory development survey company material triangulation

Theories: contingency theory resource based view of the firm

Turning Lemons into Lemonade: Designing Remote Teaching to Foster a Sense of Online Learning Community through Action Design

2020 | International Conference on Information Systems | Citations: 0

Authors: Guo, Zixiu; Leong, Carmen; Zhou, Yawen Vivian; Lee, BK; Monson, Dincy Mini

Abstract: Although the importance of learning community to student learning is well recogn ... Expand

Abstract: Although the importance of learning community to student learning is well recognized, how to integrate information and communication technology (ICT) to facilitate online learning community development is one of the most significant challenges. Building on the community of inquiry framework and sense of community perspective, this research proposes a set of design principles for the development of a virtual learning community through ICTs' use in online learning environments. By adopting an action design research method, we analyzed the case of our own online teaching course in such an unprecedented time of COVID-19 outbreak with the focus on addressing practical challenges facing fellow educators and us. This research is arguably the first to explore the design principles of technology-enabled online learning community development. This research, when completed, will shed light on challenges in enhancing the learning outcomes and students’ satisfaction with online classrooms in higher education and, more generally, adult learning. Collapse

Topics: online learning system online community social presence pandemic video conference

Methods: design principle action design research design artifact design methodology design science

Experimental Investigation of Demographic Factors Related to Phishing Susceptibility

2020 | HICSS | Citations: 11

Authors: Li, Wanru; Greitzer, Frank L; Llc, PsyberAnalytix; Lee, James; Yousefi, Bahram; Purl, Justin; Laskey, Kathryn B

Abstract: This paper reports on a simulated phishing experiment targeting 6,938 faculty an ... Expand

Abstract: This paper reports on a simulated phishing experiment targeting 6,938 faculty and staff at George Mason University. The study examined various possible predictors of phishing susceptibility. The focus of the present paper is on demographic factors (including age, gender and position/employment). Since previous studies of age and gender have yielded discrepant results, one purpose of the study was to disambiguate these findings. A second purpose was to compare different types of email phishing exploits. A third objective was to compare the effect of different types of feedback given to those who clicked on one or more of three simulated phishing exploits that were deployed over a three-week period. Our analysis of demographic factors, effects of phishing email content, and effects of repeated exposure to phishing exploits revealed significant age effects, marginally significant gender differences, and significant differences in email type. A multi-level model estimated effects of multiple variables simultaneously. Collapse

Topics: electronic mail phishing email phishing service desk system support

Methods: survey experiment chi squared test Bonferroni correction Pearson's chi squared test of independence between categorical variables