论文信息 - Studying IT Security Professionals: Research Design and Lessons Learned

Studying IT Security Professionals: Research Design and Lessons Learned

The HOT Admin Field Study used qualitative methods to study information technology security professionals. Both the nature of the field and the di! culty of gaining access to participants had implications for the study design. We present the lessons learned, and o"er suggestions overcoming the challenge of participant recruitment.

[1] Eser Kandogan,et al. Distributed Cognition and Joint Activity in Collaborative Problem Solving , 2003 .

[2] Karen Locke. Grounded Theory in Management Research , 2000 .

[3] Jan Guynes Clark,et al. Why there aren't more information security research studies , 2004, Inf. Manag..

[4] Gavriel Salvendy,et al. Usability and Security An Appraisal of Usability Issues in Information Security Methods , 2001, Comput. Secur..

[5] Alan F. Newell,et al. The use of theatre in requirements gathering and usability studies , 2006, Interact. Comput..

[6] Eben M. Haber. Security Administration Tools and Practices , 2005 .

[7] Detmar W. Straub,et al. Coping With Systems Risk: Security Planning Models for Management Decision Making , 1998, MIS Q..

[8] Lorrie Faith Cranor,et al. Security and Usability: Designing Secure Systems that People Can Use , 2005 .

[9] Karen Holtzblatt,et al. Contextual design , 1997, INTR.

[10] A. Strauss,et al. The discovery of grounded theory: strategies for qualitative research aldine de gruyter , 1968 .