How can organizations develop situation awareness for incident response: A case study of management practice

[1]  K. Eisenhardt Building theories from case study research , 1989, STUDI ORGANIZZATIVI.

[2]  Mica R. Endsley,et al.  Toward a Theory of Situation Awareness in Dynamic Systems , 1995, Hum. Factors.

[3]  Edwin B. Heinlein Principles of information systems security , 1995, Comput. Secur..

[4]  Michael D. Myers,et al.  A Set of Principles for Conducting and Evaluating Interpretive Field Studies in Information Systems , 1999, MIS Q..

[5]  H. Russell Bernard,et al.  Social Research Methods: Qualitative and Quantitative Approaches , 2000 .

[6]  Robin M. Ruefle,et al.  Handbook for Computer Security Incident Response Teams (CSIRTs) , 2003 .

[7]  Jan Guynes Clark,et al.  Why there aren't more information security research studies , 2004, Inf. Manag..

[8]  Marie-Claude Boudreau,et al.  Enacting Integrated Information Technology: A Human Agency Perspective , 2005, Organ. Sci..

[9]  Kathleen M. Eisenhardt,et al.  Theory Building From Cases: Opportunities And Challenges , 2007 .

[10]  Martin Gilje Jaatun,et al.  A framework for incident response management in the petroleum industry , 2009, Int. J. Crit. Infrastructure Prot..

[11]  Finn Olav Sveen,et al.  Blind information security strategy , 2009, Int. J. Crit. Infrastructure Prot..

[12]  Christopher J. Novak,et al.  2009 Data Breach Investigations Report , 2009 .

[13]  Kasia Muldner,et al.  Preparation, detection, and analysis: the diagnostic work of IT security incident response , 2010, Inf. Manag. Comput. Secur..

[14]  Alan R. Hevner,et al.  Focus Groups for Artifact Refinement and Evaluation in Design Research , 2010, Commun. Assoc. Inf. Syst..

[15]  Eric Michael Hutchins,et al.  Intelligence-Driven Computer Network Defense Informed by Analysis of Adversary Campaigns and Intrusion Kill Chains , 2010 .

[16]  A. B. Ruighaver,et al.  Incident response teams - Challenges in supporting the organisational security function , 2012, Comput. Secur..

[17]  Emmanuel Aroms,et al.  NIST Special Publication 800-61 Revision 1 Computer Security Incident Handling Guide , 2012 .

[18]  Maria B. Line,et al.  A Case Study: Preparing for the Smart Grids - Identifying Current Practice for Information Security Incident Management in the Power Industry , 2013, 2013 Seventh International Conference on IT Security Incident Management and IT Forensics.

[19]  Nancy J. Cooke,et al.  Cyber situation awareness and teamwork , 2013, EAI Endorsed Trans. Security Safety.

[20]  Celeste Lyn Paul,et al.  A Taxonomy of Cyber Awareness Questions for the User-Centered Design of Cyber Situation Awareness , 2013, HCI.

[21]  Graeme G. Shanks,et al.  A situation awareness model for information security risk management , 2014, Comput. Secur..

[22]  Gianluca Stringhini,et al.  Targeted Attacks against Industrial Control Systems: Is the Power Industry Prepared? , 2014, SEGS@CCS.

[23]  Sean B. Maynard,et al.  Towards a Taxonomy of Information Security Management Practices in Organisations , 2014 .

[24]  Jongwoo Kim,et al.  Incident-centered information security: Managing a strategic balance between prevention and response , 2014, Inf. Manag..

[25]  Karin Bernsmed,et al.  Information Security Incident Management: Identified Practice in Large Organizations , 2014, 2014 Eighth International Conference on IT Security Incident Management & IT Forensics.

[26]  Reeshad S. Dalal,et al.  An Organizational Psychology Perspective to Examining Computer Security Incident Response Teams , 2014, IEEE Security & Privacy.

[27]  Ulrik Franke,et al.  Cyber situational awareness - A systematic review of the literature , 2014, Comput. Secur..

[28]  Ronald Paans,et al.  A Framework for Designing a Security Operations Centre (SOC) , 2015, 2015 48th Hawaii International Conference on System Sciences.

[29]  Graeme G. Shanks,et al.  A case analysis of information systems and security incident responses , 2015, Int. J. Inf. Manag..

[30]  Reeshad S. Dalal,et al.  Improving Cybersecurity Incident Response Team Effectiveness Using Teams-Based Research , 2015, IEEE Security & Privacy.

[31]  Paul M Salmon,et al.  Never blame the umpire – a review of Situation Awareness models and methods for examining the performance of officials in sport , 2016, Ergonomics.

[32]  Poul E. Heegaard,et al.  The future of information security incident management training: A case study of electrical power companies , 2016, Comput. Secur..

[33]  Eirik Albrechtsen,et al.  Examining the suitability of industrial safety management approaches for information security incident management , 2016, Inf. Comput. Secur..

[34]  Robert K. Yin,et al.  Case Study Research and Applications: Design and Methods , 2017 .

[35]  Nancy J. Cooke,et al.  Impact of Team Collaboration on Cybersecurity Situational Awareness , 2017, Theory and Models for Cyber Situation Awareness.

[36]  Guido Schryen,et al.  Information security investments: An exploratory multiple case study on decision-making, evaluation and learning , 2018, Comput. Secur..

[37]  Martin Lastovicka,et al.  CRUSOE: Data Model for Cyber Situational Awareness , 2018, ARES.

[38]  Douglas C. Sicker,et al.  Cybersecurity incident response capabilities in the Ecuadorian financial sector , 2018, J. Cybersecur..

[39]  José M. Fernandez,et al.  Survey of publicly available reports on advanced persistent threat actors , 2018, Comput. Secur..

[40]  Joe Peppard,et al.  Rethinking the concept of the IS organization , 2018, Inf. Syst. J..

[41]  Philipp Reinecke,et al.  Challenges and performance metrics for security operations center analysts: a systematic review , 2020 .

[42]  Kevin C. Desouza,et al.  Strategically-motivated advanced persistent threat: Definition, process, tactics and a disinformation model of counterattack , 2019, Comput. Secur..

[43]  Barrett S. Caldwell,et al.  Observing Cyber Security Incident Response: Qualitative Themes From Field Research , 2019, Proceedings of the Human Factors and Ergonomics Society Annual Meeting.

[44]  Sherry Wei,et al.  Elements of Cyber-Cognitive Situation Awareness in Organizations , 2019, Proceedings of the Human Factors and Ergonomics Society Annual Meeting.

[45]  Kevin C. Desouza,et al.  How integration of cyber security management and incident response enables organizational learning , 2020, J. Assoc. Inf. Sci. Technol..

[46]  Pavel Celeda,et al.  Cyber Situation Awareness via IP Flow Monitoring , 2020, NOMS 2020 - 2020 IEEE/IFIP Network Operations and Management Symposium.