Information security and risk management

Authors:
Lawrence D. Bodin;Lawrence A. Gordon;Martin P. Loeb
Affiliations:
University of Maryland, College Park, MD;University of Maryland Institute for Advanced Computer Studies;University of Maryland Institute for Advanced Computer Studies
Venue:
Communications of the ACM - The psychology of security: why do good users make bad decisions?
Year:
2008

Citing 6
Cited 4

Using information security as a response to competitor analysis systems

Communications of the ACM
The economics of information security investment

ACM Transactions on Information and System Security (TISSEC)
A framework for using insurance for cyber-risk management

Communications of the ACM
Evaluating information security investments using the analytic hierarchy process

Communications of the ACM - Medical image modeling
Managing Cybersecurity Resources (The Mcgraw-Hill Homeland Security Series)

Managing Cybersecurity Resources (The Mcgraw-Hill Homeland Security Series)
Budgeting process for information security expenditures

Communications of the ACM - Personal information management

Employing the social-technical perspective in identifying security management systems in organisations

International Journal of Business Information Systems
An information systems security risk assessment model under uncertain environment

Applied Soft Computing
Investing in IT Security: How to Determine the Maximum Threshold

International Journal of Information Security and Privacy
A qualitative analysis of effects of security risks on architecture of an information system

ACM SIGSOFT Software Engineering Notes

Quantified Score

Hi-index	0.00

Visualization

Abstract

Use the new PCR risk metric to find ways to enhance security, avoiding one-dimensional metrics like ALE that could risk an organization's survivability.