Information Security Investments: An Exploratory Multiple Case Study on Decision-Making, Evaluation and Learning

URN to cite this document:: urn:nbn:de:bvb:355-epub-366957
DOI to cite this document:: 10.5283/epub.36695

Weishäupl, Eva ; Yasasin, Emrah ; Schryen, Guido

Preview

PDF - Accepted Version
(267kB)

Preview

PDF
(1MB)

Date of publication of this fulltext: 02 Feb 2018 09:58

Details

Item type:	Article
Journal or Publication Title:	Computers & Security
Publisher:	Elsevier
Date:	2018
Institutions:	Business, Economics and Information Systems > Institut für Wirtschaftsinformatik > Alumni or Retired Professors > Professur für Wirtschaftsinformatik (Prof. Dr. Guido Schryen)
Keywords:	Information Security Investments, Multiple Case Study, Organizations, Single Loop Learning, Double Loop Learning
Dewey Decimal Classification:	000 Computer science, information & general works > 004 Computer science
Status:	In Press
Refereed:	Yes, this version has been refereed
Created at the University of Regensburg:	Yes
Item ID:	36695

Preview

Export bibliographical data

Abstract

The need to protect resources against attackers is reflected by huge information security investments of firms worldwide. In the presence of budget constraints and a diverse set of assets to protect, organizations have to decide in which IT security measures to invest, how to evaluate those investment decisions, and how to learn from past decisions to optimize future security investment actions. ...