A framework for selection of strategy for management of security measures

Eirik Bjorheim Abrahamsen, Kenneth Pettersen, Terje Aven, Mareile Kaufmann, Tony Rosqvist

    Research output: Contribution to journalArticleScientificpeer-review

    5 Citations (Scopus)

    Abstract

    In this paper, we present and discuss a framework for security risk management, focusing on the selection of a management strategy for decision-making on security measures in particular. The framework provides guidance on the selection of a suitable type of management strategy for various types of decision-making contexts. An Information and Communication Technology case study is used to illustrate the practical implications of the framework.

    Original languageEnglish
    Pages (from-to)404-417
    Number of pages14
    JournalJournal of Risk Research
    Volume20
    Issue number3
    DOIs
    Publication statusPublished - 4 Mar 2017
    MoE publication typeA1 Journal article-refereed

    Fingerprint

    Decision making
    decision making
    Risk management
    management
    risk management
    communication technology
    information technology
    Communication
    Management strategy
    Information and communication technology
    Guidance

    Keywords

    • ambiguity
    • security
    • uncertainty
    • vulnerability

    Cite this

    Abrahamsen, E. B., Pettersen, K., Aven, T., Kaufmann, M., & Rosqvist, T. (2017). A framework for selection of strategy for management of security measures. Journal of Risk Research, 20(3), 404-417. https://doi.org/10.1080/13669877.2015.1057205
    Abrahamsen, Eirik Bjorheim ; Pettersen, Kenneth ; Aven, Terje ; Kaufmann, Mareile ; Rosqvist, Tony. / A framework for selection of strategy for management of security measures. In: Journal of Risk Research. 2017 ; Vol. 20, No. 3. pp. 404-417.
    @article{f8c287285d404d0d834f0ba9d97f4a21,
    title = "A framework for selection of strategy for management of security measures",
    abstract = "In this paper, we present and discuss a framework for security risk management, focusing on the selection of a management strategy for decision-making on security measures in particular. The framework provides guidance on the selection of a suitable type of management strategy for various types of decision-making contexts. An Information and Communication Technology case study is used to illustrate the practical implications of the framework.",
    keywords = "ambiguity, security, uncertainty, vulnerability",
    author = "Abrahamsen, {Eirik Bjorheim} and Kenneth Pettersen and Terje Aven and Mareile Kaufmann and Tony Rosqvist",
    year = "2017",
    month = "3",
    day = "4",
    doi = "10.1080/13669877.2015.1057205",
    language = "English",
    volume = "20",
    pages = "404--417",
    journal = "Journal of Risk Research",
    issn = "1366-9877",
    publisher = "Routledge",
    number = "3",

    }

    Abrahamsen, EB, Pettersen, K, Aven, T, Kaufmann, M & Rosqvist, T 2017, 'A framework for selection of strategy for management of security measures', Journal of Risk Research, vol. 20, no. 3, pp. 404-417. https://doi.org/10.1080/13669877.2015.1057205

    A framework for selection of strategy for management of security measures. / Abrahamsen, Eirik Bjorheim; Pettersen, Kenneth; Aven, Terje; Kaufmann, Mareile; Rosqvist, Tony.

    In: Journal of Risk Research, Vol. 20, No. 3, 04.03.2017, p. 404-417.

    Research output: Contribution to journalArticleScientificpeer-review

    TY - JOUR

    T1 - A framework for selection of strategy for management of security measures

    AU - Abrahamsen, Eirik Bjorheim

    AU - Pettersen, Kenneth

    AU - Aven, Terje

    AU - Kaufmann, Mareile

    AU - Rosqvist, Tony

    PY - 2017/3/4

    Y1 - 2017/3/4

    N2 - In this paper, we present and discuss a framework for security risk management, focusing on the selection of a management strategy for decision-making on security measures in particular. The framework provides guidance on the selection of a suitable type of management strategy for various types of decision-making contexts. An Information and Communication Technology case study is used to illustrate the practical implications of the framework.

    AB - In this paper, we present and discuss a framework for security risk management, focusing on the selection of a management strategy for decision-making on security measures in particular. The framework provides guidance on the selection of a suitable type of management strategy for various types of decision-making contexts. An Information and Communication Technology case study is used to illustrate the practical implications of the framework.

    KW - ambiguity

    KW - security

    KW - uncertainty

    KW - vulnerability

    UR - http://www.scopus.com/inward/record.url?scp=84937140317&partnerID=8YFLogxK

    U2 - 10.1080/13669877.2015.1057205

    DO - 10.1080/13669877.2015.1057205

    M3 - Article

    AN - SCOPUS:84937140317

    VL - 20

    SP - 404

    EP - 417

    JO - Journal of Risk Research

    JF - Journal of Risk Research

    SN - 1366-9877

    IS - 3

    ER -