Blar i NTNU Open på forfatter "Østby, Grethe"
-
A Socio-Technical Framework to Improve cyber security training: A Work in Progress
Østby, Grethe; Berg, Lars; Kianpour, Mazaher; Katt, Basel; Kowalski, Stewart James (Journal article; Peer reviewed, 2019)In this paper we discuss a work in progress to create a socio-technical system design framework for cyber security training exercises (STSD-CSTE) to support the development of cyber security training in the Norwegian Cyber ... -
A case study of a municipality phishing attack measures - towards a socio-technical incident management framework
Østby, Grethe; Kowalski, Stewart James (Peer reviewed; Journal article, 2021)During the Corona-crisis, the number of data breaches and hacking increased rapidly. For some organizations it was difficult to handle both the Corona-crises and such attacks. A decision made to prevent this overload of ... -
Digital Forensic Readiness in IoT - A Risk Assessment Model
Forfot, Alexander Daniel; Østby, Grethe (Chapter, 2021)With the increased adoption of IoT devices they have become an important source of digital evidence, and could be a vital part of investigations both for companies and law enforcement agencies. There are however some present ... -
Digital transformation of public security - developing tripleloop- learning artifacts to meet emerged information security incident response resilience and readiness challenges in public emergency organizations
Østby, Grethe (Doctoral theses at NTNU;2023:112, Doctoral thesis, 2023)Studies have found that resilience and response capabilities in a cyber-attack are unfamiliar to organizations, and it is also found that not only the IT-personnel, but also the crisis management group and teams need ... -
Kommunikasjon av retningslinjer for informasjonssikkerhet
Skaar, Lars Cato (Master thesis, 2019)Sykehuset Østfold HF har en av de mest moderne IKT-plattformene i helsesektoren i Norge og har en målsetning om å utnytte moderne teknologi og nytt sykehus for å bli ledende innenfor definerte områder innen forskning og ... -
ORGANIZATIONAL LEARNING WITH CRISES
Østby, Grethe; Kowalski, Stewart James (Chapter, 2022)In this paper we present our ongoing attempts to introduce and develop a triple-loop learning process via a discussion exercise in a Master of Science (MSc) introduction to information security management course. Over a ... -
Preparing for cyber crisis management exercises
Østby, Grethe; Kowalski, Stewart James (Chapter, 2020)In this paper the authors discuss how to create a preparation schedule for ex-ercises (PSE) to support EXCON-teams and instructors for full-scaled com-bined crisis management and cyber-exercises. The process to create the ... -
The Root Causes of Compromised Accounts at the University
Nyblom, Philip Johannes Brugmans; Wangen, Gaute; Kianpour, Mazaher; Østby, Grethe (Chapter, 2020)Compromised usernames and passwords are a continuous problem that several organizations struggle with even though this is a known problem with known solutions. Passwords remain a problem for the modern University as it ... -
SIEMS-CIMS integration: Secure upload of cyber-incident information to crisis information management systems
Huseby, Johann Olav Valdre (Master thesis, 2021)Per i dag er det mangel på informasjonsdeling mellom personer som jobber på operasjonelt nivå med SIEMS (Security Incident and Event Management System) og personene som trenger å ta strategiske beslutninger under en krise. ... -
A Socio-Technical Regime Transitions Model for Gerontechnology Service Design: Privacy, Information Security and Cyber Security in Focus
Kowalski, Stewart James; Østby, Grethe (Peer reviewed; Journal article, 2022)In this paper, we present on ongoing research to use a socio-technical privacy, information security and cybersecurity model to support the design, development and delivery processes of health care services for aging in ... -
Towards a Maturity Improvement Process – Systemically Closing the Socio-Technical Gap
Østby, Grethe; Kowalski, Stewart James; Katt, Basel (Peer reviewed; Journal article, 2020)In this paper we present ongoing research into escalation maturity measurements of organizations. We outline how to integrate a socio-technical approach and LIFT-methodology to improve the escalation maturity improvement ... -
Training the Trainers for Cybersecurity Exercises - Developing EXCON-teams
Østby, Grethe; Selebø, Bjørn Emil; Kowalski, Stewart James (Chapter, 2023)In recent years there has been a large increase in advanced computer attacks targeting Norwegian authorities and businesses. At the same time there is a great shortage of trained and qualified personnel within cyber- and ...