Browsing NTNU Open by Author "Snekkenes, Einar Arthur"
Now showing items 1-20 of 22
-
A framework for estimating information security risk assessment method completeness: Core Unified Risk Framework
Wangen, Gaute; Hallstensen, Christoffer V; Snekkenes, Einar Arthur (Journal article; Peer reviewed, 2017)In general, an information security risk assessment (ISRA) method produces risk estimates, where risk is the product of the probability of occurrence of an event and the associated consequences for the given organization. ... -
A Taxonomy of Situations within the Context of Risk Analysis
Szekeres, Adam; Snekkenes, Einar Arthur (Chapter, 2019)Prediction of deliberate human decisions with potential negative impact on others would have great practical and scientific utility. The Conflicting Incentives Risk Analysis (CIRA) method defines risk as a result of ... -
Artificial Intelligence–Based Framework for Analyzing Health Care Staff Security Practice: Mapping Review and Simulation Study
Yeng, Prosper; Nweke, Livinus Obiora; Yang, Bian; Fauzi, Muhammad Ali; Snekkenes, Einar Arthur (Peer reviewed; Journal article, 2021)Background: Blocklisting malicious activities in health care is challenging in relation to access control in health care security practices due to the fear of preventing legitimate access for therapeutic reasons. Inadvertent ... -
Construction of Human Motivational Profiles by Observation for Risk Analysis
Szekeres, Adam; Snekkenes, Einar Arthur (Peer reviewed; Journal article, 2020)This study aimed at analyzing the extent to which publicly observable pieces of information representing stakeholders’ past and current choices can be utilized for the construction of motivational profiles. Motivation is ... -
Data-Driven and Artificial Intelligence (AI) Approach for Modelling and Analyzing Healthcare Security Practice: A Systematic Review
Yeng, Prosper; Nweke, Livinus Obiora; Woldaregay, Ashenafi Zebene; Yang, Bian; Snekkenes, Einar Arthur (Peer reviewed; Journal article, 2020)Data breaches in healthcare continue to grow exponentially, calling for a rethinking into better approaches of security measures towards mitigating the menace. Traditional approaches including technological measures, have ... -
Delay Discounting and its Impact on Information Security Decision-Making
Søgnen, Marte Marjorie (Master thesis, 2023)Påvirkningen informasjonsteknologi har på organisasjoner er i stadig vekst. Digitalisering har ført til nye forretningsmuligheter og effektivitet. Imidlertid følger det med disse fremskrittene stadig skiftende risikoer som ... -
Exploring strategies to enhance the learning outcomes of Cyber Security, Education, Training and Awareness programs
Siebke, Hans-Christian (Master thesis, 2023)Denne oppgaven utforsker effektiviteten til ulike læringsstrategier for å forbedre evnen til å identifisere og svare på phishing-angrep. Tre grupper har deltatt i ulike opplæringsmetoder: ingen opplæring, standard cybertrening, ... -
Factors Affecting the Willingness to Share Knowledge in the Communities of Practice
Agrawal, Vivek; Snekkenes, Einar Arthur (Chapter, 2017)The purpose of this study is to investigate various factors that can affect the willingness of the IT professionals in Norway to share their knowledge in the open communities of practice. The study is conducted through an ... -
Factors Influencing the Participation of Information Security Professionals in Electronic Communities of Practice
Agrawal, Vivek; Wasnik, Pankaj Shivdayal; Snekkenes, Einar Arthur (Chapter, 2017)The purpose of this study is to contribute to a better understanding of the current status of the participation of the information security professionals (ISPs) in the electronic communities of practice (eCoP) in the ... -
Healthcare Security Practice Analysis, Modelling and Incentivization
Yeng, Prosper Kandabongee (Doctoral theses at NTNU;2023:170, Doctoral thesis, 2023)The human aspect of information security practice has become a global concern. According to Verizon’s 2022 data breaches report, over 80% of data breaches were caused by the human aspect, and this trend has been consistent ... -
Healthcare Staffs' Information Security Practices Towards Mitigating Data Breaches: A Literature Survey
Yeng, Prosper; Yang, Bian; Snekkenes, Einar Arthur (Journal article; Peer reviewed, 2019)The purpose of this study was to understand healthcare staffs' information security (IS) practices towards mitigating data breaches. A literature survey was conducted to understand the state-of-the-art methods, tools, ... -
Human Behavior Prediction for Risk Analysis
Szekeres, Adam; Snekkenes, Einar Arthur (Chapter, 2021)The Conflicting Incentives Risk Analysis (CIRA) method makes predictions about human decisions to characterize risks within the domain of information security. Since traditional behavior prediction approaches utilizing ... -
Human Motivation as the Basis of Information Security Risk Analysis
Szekeres, Adam (Doctoral theses at NTNU;2020:373, Doctoral thesis, 2020)The electric grid represents a critical infrastructure which has an essential rolein supporting societies. Therefore, it is important to identify, analyse and mitigate undesirable events that may disrupt the reliable ... -
Inferring Delay Discounting Factors from Public Observables: Applications in Risk Analysis and the Design of Adaptive Incentives
Szekeres, Adam; Snekkenes, Einar Arthur (Chapter, 2021)Decision-makers regularly need to make trade-offs between benefits in the present and the future. Smaller immediate rewards are often preferred over larger delayed rewards. The concept of delay discounting describes how ... -
Mapping the Psychosocialcultural Aspects of Healthcare Professionals’ Information Security Practices: Systematic Mapping Study
Yeng, Prosper; Szekeres, Adam; Yang, Bian; Snekkenes, Einar Arthur (Peer reviewed; Journal article, 2021)Background: Data breaches in health care are on the rise, emphasizing the need for a holistic approach to mitigation efforts. Objective: The purpose of this study was to develop a comprehensive framework for modeling ... -
Predicting CEO Misbehavior from Observables: Comparative Evaluation of Two Major Personality Models
Szekeres, Adam; Snekkenes, Einar Arthur (Chapter, 2019)The primary purpose of this study is to demonstrate how publicly observable pieces of information can be used to build various psychological profiles that can be utilized for the prediction of behavior within a risk analysis ... -
Representing decision-makers in SGAM-H: the Smart Grid Architecture Model Extended with the Human Layer
Szekeres, Adam; Snekkenes, Einar Arthur (Chapter, 2020)The safety and security of critical infrastructures is both a technical and a social issue. However, most risk analysis methods focus predominantly on technical aspects and ignore the impact strategic human decisions have ... -
Secure Benchmarking using Electronic Voting
Agrawal, Vivek; Snekkenes, Einar Arthur (Peer reviewed; Journal article, 2018)It is a common practice in the industry to organize benchmark processes to establish information security performance evaluation standards. A benchmarking system collects information security-related data from the organization ... -
Security awareness training as a countermeasure to phishing attacks
Bilet, Bjørn Boris (Master thesis, 2020)Denne oppgaven har til hensikt å undersøke effekten av opplæring som ett forsvar mot phishing-angrep via e-post. En av de vanligste formene for angrep i dag er phishing, og dette er ofte angriperens første steg inn i ... -
Security governance: the board's responsibility
Johnsen, Vilde Nylund (Master thesis, 2023)I denne master oppgaven vil det bli undersøkt hvordan virksomheter jobber med evaluering som et element i sin sikkerhetsstyring, og hvilke potensiale som ligger i denne prosessen for å sikre effektiv styring og kontroll ...