TUTCRIS - Tampereen teknillinen yliopisto

TUTCRIS

A Practice Lens for Understanding the Organizational and Social Challenges of Information Security Management

Tutkimustuotosvertaisarvioitu

Standard

A Practice Lens for Understanding the Organizational and Social Challenges of Information Security Management. / Niemimaa, Elina.

Proceedings of the 20th Pacific Asia Conference on Information Systems (PACIS 2016). 2016.

Tutkimustuotosvertaisarvioitu

Harvard

Niemimaa, E 2016, A Practice Lens for Understanding the Organizational and Social Challenges of Information Security Management. julkaisussa Proceedings of the 20th Pacific Asia Conference on Information Systems (PACIS 2016). Pacific Asia Conference on Information Systems, 1/01/14.

APA

Niemimaa, E. (2016). A Practice Lens for Understanding the Organizational and Social Challenges of Information Security Management. teoksessa Proceedings of the 20th Pacific Asia Conference on Information Systems (PACIS 2016)

Vancouver

Niemimaa E. A Practice Lens for Understanding the Organizational and Social Challenges of Information Security Management. julkaisussa Proceedings of the 20th Pacific Asia Conference on Information Systems (PACIS 2016). 2016

Author

Niemimaa, Elina. / A Practice Lens for Understanding the Organizational and Social Challenges of Information Security Management. Proceedings of the 20th Pacific Asia Conference on Information Systems (PACIS 2016). 2016.

Bibtex - Lataa

@inproceedings{4416b4fc29a140e78c23e12734ceb1bb,
title = "A Practice Lens for Understanding the Organizational and Social Challenges of Information Security Management",
abstract = "As the cost and amount of information security breaches continue to rise, information security management becomes vital for organizations. Often organization seek advice from information security management standards and other frameworks to manage their information security. Such standards and frameworks depict information security management as a rational, systematic and linear process and leave out the complexity and uncertainty of real-life settings. In particular, they pay little attention to the organizational and social challenges inherent in information security management. Therefore, this study draws on the practice theory to develop a practice lens for understanding how people, practices and what happens in practice interact and create such challenges. This lens depicts information security management as emerging from mundane aspects of information security management work and from the enacted social structures of and events arising at an organization and its environment and enables a deeper understanding of the organizational and social challenges. After developing this lens, it is illustrated and elaborated through an ethnographic study at an IT service provider, and its contributions to research and practice discussed.",
author = "Elina Niemimaa",
year = "2016",
language = "English",
booktitle = "Proceedings of the 20th Pacific Asia Conference on Information Systems (PACIS 2016)",

}

RIS (suitable for import to EndNote) - Lataa

TY - GEN

T1 - A Practice Lens for Understanding the Organizational and Social Challenges of Information Security Management

AU - Niemimaa, Elina

PY - 2016

Y1 - 2016

N2 - As the cost and amount of information security breaches continue to rise, information security management becomes vital for organizations. Often organization seek advice from information security management standards and other frameworks to manage their information security. Such standards and frameworks depict information security management as a rational, systematic and linear process and leave out the complexity and uncertainty of real-life settings. In particular, they pay little attention to the organizational and social challenges inherent in information security management. Therefore, this study draws on the practice theory to develop a practice lens for understanding how people, practices and what happens in practice interact and create such challenges. This lens depicts information security management as emerging from mundane aspects of information security management work and from the enacted social structures of and events arising at an organization and its environment and enables a deeper understanding of the organizational and social challenges. After developing this lens, it is illustrated and elaborated through an ethnographic study at an IT service provider, and its contributions to research and practice discussed.

AB - As the cost and amount of information security breaches continue to rise, information security management becomes vital for organizations. Often organization seek advice from information security management standards and other frameworks to manage their information security. Such standards and frameworks depict information security management as a rational, systematic and linear process and leave out the complexity and uncertainty of real-life settings. In particular, they pay little attention to the organizational and social challenges inherent in information security management. Therefore, this study draws on the practice theory to develop a practice lens for understanding how people, practices and what happens in practice interact and create such challenges. This lens depicts information security management as emerging from mundane aspects of information security management work and from the enacted social structures of and events arising at an organization and its environment and enables a deeper understanding of the organizational and social challenges. After developing this lens, it is illustrated and elaborated through an ethnographic study at an IT service provider, and its contributions to research and practice discussed.

M3 - Conference contribution

BT - Proceedings of the 20th Pacific Asia Conference on Information Systems (PACIS 2016)

ER -