I am looking for case studies, documents and statistics analysing the impact of job design choices on enterprise (security) risks.
Job design, in a nutshell, involves defining employee roles and related tasks associated for employees in an organisation.
Intuitively, job design decisions have an impact on the productivity of employees, number of accidental & deliberate incidents, exposure to security risks (e.g. by dealing/not dealing with separation of duties and/or empowering too much certain people/roles).
There are interesting studies tacking this issue from an economics perspective, such as the paper on “Limited Intertemporal Commitment and Job Design” (even if it is a little bit too abstract).
So far I have found very little in terms of studies and documents that scientifically analyse how changes in job design affect security risks in an organisation. Any link and reference would really be welcome.
--- Posted by Marco Casassa Mont (here and here) ---
--- NOTE: use this mirror blog if you prefer posting on an external blog site ---
--- NOTE: my original HP blog can be found here ---
Friday, January 22, 2010
TSB EnCoRe Project – Sixth Quarter Summary and other News
The Sixth Quarter Summary of the TSB EnCoRe Project (Ensuring Consent and Revocation - http://www.encore-project.info/) has been released: http://www.encore-project.info/press_archive/Q6%20summary.pdf
The EnCoRe website has also extended to provide the latest news and EnCoRe tidbits, related to aspects of privacy, consent and revocation of preferences: http://www.encore-project.info/news.html#story1
--- Posted by Marco Casassa Mont (here and here) ---
--- NOTE: use this mirror blog if you prefer posting on an external blog site ---
--- NOTE: my original HP blog can be found here ---
The EnCoRe website has also extended to provide the latest news and EnCoRe tidbits, related to aspects of privacy, consent and revocation of preferences: http://www.encore-project.info/news.html#story1
--- Posted by Marco Casassa Mont (here and here) ---
--- NOTE: use this mirror blog if you prefer posting on an external blog site ---
--- NOTE: my original HP blog can be found here ---
CfP MobiSec 2010 – Submission deadline: 8 February 2010
The CfP of the 2nd International ICST Conference on Security and Privacy in Moblie Information and Communication Systems – MobiSec 2010 is now available online: http://www.mobisec.org/
Please consider submitting a paper. The deadline is 08 February 2010.
--- Posted by Marco Casassa Mont (here and here) ---
--- NOTE: use this mirror blog if you prefer posting on an external blog site ---
--- NOTE: my original HP blog can be found here ---
Please consider submitting a paper. The deadline is 08 February 2010.
--- Posted by Marco Casassa Mont (here and here) ---
--- NOTE: use this mirror blog if you prefer posting on an external blog site ---
--- NOTE: my original HP blog can be found here ---
CfP TrustBus 2010 – Submission deadline: 12 March 2010
The CfP of the 7th International Conference on Trust, Privacy & Security in Digital Business – TrustBus 2010 is now available online: http://www.isac.uma.es/trustbus10/
Please consider submitting a paper. The deadline is 12 March 2010.
--- Posted by Marco Casassa Mont (here and here) ---
--- NOTE: use this mirror blog if you prefer posting on an external blog site ---
--- NOTE: my original HP blog can be found here ---
Please consider submitting a paper. The deadline is 12 March 2010.
--- Posted by Marco Casassa Mont (here and here) ---
--- NOTE: use this mirror blog if you prefer posting on an external blog site ---
--- NOTE: my original HP blog can be found here ---
CfP IEEE Policy 2010 – Submission deadline: 15 February 2010
The CfP of the 11th International Conference on Policies for Distributed Systems and networks – IEEE Policy 2010 is now available online: http://www.policy-workshop.org/
Please consider submitting a paper. The deadline for submitting an abstract is 8 February 2010 whilst the full paper is due on 15 February 2010.
--- Posted by Marco Casassa Mont (here and here) ---
--- NOTE: use this mirror blog if you prefer posting on an external blog site ---
--- NOTE: my original HP blog can be found here ---
Please consider submitting a paper. The deadline for submitting an abstract is 8 February 2010 whilst the full paper is due on 15 February 2010.
--- Posted by Marco Casassa Mont (here and here) ---
--- NOTE: use this mirror blog if you prefer posting on an external blog site ---
--- NOTE: my original HP blog can be found here ---
CfP SeCrypt 2010 – Submission deadline: 03 February 2010
The CfP of the International Conference on Security and Cryptography – SeCrypt 2010 is now available online: http://www.secrypt.icete.org/
Please consider submitting a paper. The deadline is 03 February 2010.
--- Posted by Marco Casassa Mont (here and here) ---
--- NOTE: use this mirror blog if you prefer posting on an external blog site ---
--- NOTE: my original HP blog can be found here ---
Please consider submitting a paper. The deadline is 03 February 2010.
--- Posted by Marco Casassa Mont (here and here) ---
--- NOTE: use this mirror blog if you prefer posting on an external blog site ---
--- NOTE: my original HP blog can be found here ---
Subscribe to:
Posts (Atom)