The Community for Technology Leaders
Green Image
Issue No. 01 - January/February (2012 vol. 10)
ISSN: 1540-7993
pp: 60-68
James A. Pettigrew III , National Geospatial-Intelligence Agency
Julie J.C.H. Ryan , George Washington University
ABSTRACT
How do IT security managers make decisions in the absence of empirical data, and how do they know these decisions are successful? Some security managers seem more successful at making decisions than others. Are they guessing, or are they using some tacit knowledge? To address these questions, a study employed open-ended interviews with highly regarded, experienced security practitioners.
INDEX TERMS
information security management, security decision-making, qualitative research, computer security
CITATION

J. J. Ryan and J. A. Pettigrew III, "Making Successful Security Decisions: A Qualitative Evaluation," in IEEE Security & Privacy, vol. 10, no. , pp. 60-68, 2012.
doi:10.1109/MSP.2011.128
94 ms
(Ver 3.3 (11022016))