Why there aren't more information security research studies

被引：151

作者：

Kotulic, AG

Clark, JG

机构：

[1] Univ Texas, Dept Informat Syst, San Antonio, TX 78249 USA

[2] Kent State Univ, Kent, OH 44242 USA

来源：

INFORMATION & MANAGEMENT | 2004年 / 41卷 / 05期

关键词：

security; risk; security risk management; IT strategy;

D O I：

10.1016/j.im.2003.08.001

中图分类号：

TP [自动化技术、计算机技术];

学科分类号：

0812 ;

摘要：

Noting a serious lack of empirical research in the area of Security risk management (SRM), we proposed a conceptual model based on the study of SRM at the firm level. Although considerable time and effort were expended in attempting to validate the usefulness of the proposed model, we were not successful. We provide here a description of our conceptual model, the methodology designed to test this model, the problems we faced while attempting to test the model, and our suggestions for those who attempt to conduct work in highly sensitive areas. (C) 2003 Elsevier B.V All rights reserved.

引用

页码：597 / 607

页数：11

共 73 条

[1]

[Anonymous], BEHAV THEORY FIRM

[2]

[Anonymous], RISK ANAL ASSESSMENT

[3]

[Anonymous], MANAGEMENT SCI

[4] NEW INFORMATION-SYSTEMS LEADERS - A CHANGING-ROLE IN A CHANGING WORLD [J].

APPLEGATE, LM ;

ELAM, JJ .

MIS QUARTERLY, 1992, 16 (04) :469-490

[5]

BARTON SL, 1987, ACAD MANAGE REV, V12, P67, DOI 10.2307/257994

[6]

BERGERON F, 1990, J SYST MANAGE, V41, P14

[7]

Bodeaum D. J., 1992, Proceedings. Eighth Annual Computer Security Applications Conference (Cat. No.92TH0470-5), P56, DOI 10.1109/CSAC.1992.228233

[8]

BOURGEOIS LJ, 1985, ACAD MANAGE J, V28, P548, DOI 10.5465/256113

[9] STRATEGY PROCESS RESEARCH - FOCUSING ON CORPORATE SELF-RENEWAL [J].

CHAKRAVARTHY, BS ;

DOZ, Y .

STRATEGIC MANAGEMENT JOURNAL, 1992, 13 :5-14

[10]

CHAN YE, 1994, RES STRATEGIC MANAGE, V1

← 1 2 3 4 5 6 7 8 →