Abstract | ||
---|---|---|
Noting a serious lack of empirical research in the area of security risk management (SRM), we proposed a conceptual model based on the study of SRM at the firm level. Although considerable time and effort were expended in attempting to validate the usefulness of the proposed model, we were not successful. We provide here a description of our conceptual model, the methodology designed to test this model, the problems we faced while attempting to test the model, and our suggestions for those who attempt to conduct work in highly sensitive areas. |
Year | DOI | Venue |
---|---|---|
2004 | 10.1016/j.im.2003.08.001 | Information & Management |
Keywords | Field | DocType |
security risk management,considerable time,it strategy,security,risk,conceptual model,sensitive area,firm level,information security research study,serious lack,empirical research,information security | Information system,Conceptual model,Risk analysis (business),Information technology,Knowledge management,Operations research,Information security,Risk analysis (engineering),Technology strategy,Risk management,Engineering,Empirical research | Journal |
Volume | Issue | ISSN |
41 | 5 | Information & Management |
Citations | PageRank | References |
128 | 4.50 | 14 |
Authors | ||
2 |
Name | Order | Citations | PageRank |
---|---|---|---|
Andrew G. Kotulic | 1 | 131 | 5.56 |
Jan Guynes Clark | 2 | 381 | 27.36 |