Browsing NTNU Open by Author "Agrawal, Vivek"
Now showing items 1-6 of 6
-
A Framework for the Information Classification in ISO 27005 Standard
Agrawal, Vivek (Chapter, 2017)Information Security Risk Management (ISRM) process involves several activities to conduct a risk management (RM) task in an organization. ISRM activities require access to various information related to the organization. ... -
CIRA Perspective on Risks Within UnRizkNow — A Case Study
Agrawal, Vivek; Szekeres, Adam (Chapter, 2017)UnRizkNow is a community of practice for cyber security practitioners in Norway. It is imperative for the establishment of UnRizkNow to identify the underlying risks that can affect the normal operation of the community. ... -
Factors Affecting the Willingness to Share Knowledge in the Communities of Practice
Agrawal, Vivek; Snekkenes, Einar Arthur (Chapter, 2017)The purpose of this study is to investigate various factors that can affect the willingness of the IT professionals in Norway to share their knowledge in the open communities of practice. The study is conducted through an ... -
Factors Influencing the Participation of Information Security Professionals in Electronic Communities of Practice
Agrawal, Vivek; Wasnik, Pankaj Shivdayal; Snekkenes, Einar Arthur (Chapter, 2017)The purpose of this study is to contribute to a better understanding of the current status of the participation of the information security professionals (ISPs) in the electronic communities of practice (eCoP) in the ... -
Information Security Risk Management Practices: Community-Based Knowledge Sharing
Agrawal, Vivek (Doctoral theses at NTNU;2018:283, Doctoral thesis, 2018)Information security risk management (ISRM) is an integral part of the management practice and is an essential element of good corporate governance. ISRM helps to identify and manage potential problems that could undermine ... -
Secure Benchmarking using Electronic Voting
Agrawal, Vivek; Snekkenes, Einar Arthur (Peer reviewed; Journal article, 2018)It is a common practice in the industry to organize benchmark processes to establish information security performance evaluation standards. A benchmarking system collects information security-related data from the organization ...