Advertisement

From Incident Response to Incident Response Management

  • Stig Ole Johnsen
  • Lillian Røstad
  • Børge Haugset
  • Maria B. Dahl
Conference paper

Abstract

In this paper we propose the development of a methodology for efficient handling of computer security related incidents. Such a methodology should include technical, cultural, and organisational issues.

Keywords

Information Security Safety Culture Computer Security Cultural Issue Sandia National Laboratory 
These keywords were added by machine and not by the authors. This process is experimental and the keywords may be updated as the learning algorithm improves.

Preview

Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.

References

  1. [1]
    van Wyk, Kenneth R. and Forno, Richard; Incident Response, O’Reilly, 2001Google Scholar
  2. [2]
    Westrum, R. (1991): Cultures with Requisite Imagination. In J.A. Wise, V.D. Hopkin and P. Stager (eds): Verification and Validation of Complex Systems: Human Factors Issues. Berlin: Springer, 401–416.Google Scholar
  3. [3]
    Hudson; The Hearts and Minds Project in an Operating Company: Developing Tools to Measure Cultural Factors, 2000 — Society of Petroleum Engineers Conference.Google Scholar
  4. [4]
    Howard and Longstaff; A Common Language for Computer Security Incidents, Sandia National Laboratories, 1998Google Scholar
  5. [5]
    Third report of the Advisory Committee on the Safety of Nuclear Installations — Organising for Safety — Health and Safety Commission, 1993 — ISBN 0-11-882104-0.Google Scholar
  6. [6]
    Reason, J. (1997): Managing the Risk of Organizational Accidents. Aldershot: Ashgate. ReasonGoogle Scholar

Copyright information

© Springer-Verlag London 2004

Authors and Affiliations

  • Stig Ole Johnsen
    • 1
  • Lillian Røstad
    • 1
  • Børge Haugset
    • 1
  • Maria B. Dahl
    • 1
  1. 1.SINTEF Industrial ManagementTrondheimNorway

Personalised recommendations