A Review and Theoretical Explanation of the ‘Cyberthreat-Intelligence (CTI) Capability’ That Needs to Be Fostered in Information Security Practitioners and How This Can Be Accomplished
Given the global increase in crippling cyberattacks, organizations are increasingly turning to cyberthreat intelligence (CTI). CTI represents actionable threat information that is relevant to a specific organization and that thus demands its close attention. CTI efforts aim to help organizations “know their enemies better” for proactive, preventive, and timely threat detection and remediation—complementing conventional risk-management paradigms designed to improve ‘general readiness' against known or unknown threats. Organizational security (OrgSec) and behavioral security research has lagged behind CTI's growing potential to address current cybersecurity challenges. Instead, CTI has largely been the purview of computer science from an algorithmic perspective. However, OrgSec and behavioral researchers can contribute a further combined knowledge of design for the organization, human factors, and organizational governance to foster CTI. In this theory-building and review manuscript, we propose the CTI capability model (CTI-CM) to prescribe the key capabilities necessary for a CTI practitioner to engage effectively in CTI activities. The CTI-CM defines a practitioner's CTI capability in terms of three highly interrelated but conceptually distinctive dimensions: analytical component capability, contextual response capability, and experiential practice capability. We further explain how these capabilities can be fostered, and the key implications for leading security practice in organizations
Year of publication: |
2020
|
---|---|
Authors: | Shin, Bongsik |
Other Persons: | Lowry, Paul Benjamin (contributor) |
Publisher: |
[2020]: [S.l.] : SSRN |
Saved in:
freely available
Extent: | 1 Online-Ressource (44 p) |
---|---|
Type of publication: | Book / Working Paper |
Language: | English |
Notes: | In: Computers & Security (C&S), vol. 92, May, Article 101761 Nach Informationen von SSRN wurde die ursprüngliche Fassung des Dokuments May 1, 2020 erstellt |
Source: | ECONIS - Online Catalogue of the ZBW |
Persistent link: https://www.econbiz.de/10012841436
Saved in favorites
Similar items by person
-
Investigating two contradictory views of formative measurement in information systems research
Kim, Gimun, (2010)
-
A practical introduction to enterprise network and security management
Shin, Bongsik, (2022)
-
Investigating the value of sociomaterialism in conceptualizing IT capability of a firm
Kim, Gimun, (2012)
- More ...