English

Security Incident Response Criteria: A Practitioner's Perspective

Cryptography and Security 2015-08-12 v1 Computers and Society

Abstract

Industrial reports indicate that security incidents continue to inflict large financial losses on organizations. Researchers and industrial analysts contend that there are fundamental problems with existing security incident response process solutions. This paper presents the Security Incident Response Criteria (SIRC) which can be applied to a variety of security incident response approaches. The criteria are derived from empirical data based on in-depth interviews conducted within a Global Fortune 500 organization and supporting literature. The research contribution of this paper is twofold. First, the criteria presented in this paper can be used to evaluate existing security incident response solutions and second, as a guide, to support future security incident response improvement initiatives.

Keywords

Cite

@article{arxiv.1508.02526,
  title  = {Security Incident Response Criteria: A Practitioner's Perspective},
  author = {George Grispos and William Bradley Glisson and Tim Storer},
  journal= {arXiv preprint arXiv:1508.02526},
  year   = {2015}
}

Comments

The 21st Americas Conference on Information Systems (AMCIS 2015), Puerto Rico, USA. http://aisel.aisnet.org/amcis2015/ISSecurity/GeneralPresentations/35/. August 13-15, 2015

R2 v1 2026-06-22T10:30:52.751Z