| dc.contributor.advisor | Kowalski, Stewart James | |
| dc.contributor.advisor | Katt, Basel | |
| dc.contributor.author | Østby, Grethe | |
| dc.date.accessioned | 2023-04-14T07:01:29Z | |
| dc.date.available | 2023-04-14T07:01:29Z | |
| dc.date.issued | 2023 | |
| dc.identifier.isbn | 978-82-326-5292-1 | |
| dc.identifier.issn | 2703-8084 | |
| dc.identifier.uri | https://hdl.handle.net/11250/3062985 | |
| dc.description.abstract | Studies have found that resilience and response capabilities in a cyber-attack are unfamiliar to organizations, and it is also found that not only the IT-personnel, but also the crisis management group and teams need socio-technical resilience and readiness to handle such attacks.
To overcome this resilience and readiness gap in the society and shortage of trained personnel to handle information security incidents, this project was established to suggest effective and efficient methods and tools and artifacts to train and work with information- and cyber security incident management in all organizations in general and particularly in public emergency organizations.
The Design Science Research in Information Security as a pragmatism philosophical perspective was chosen for this project to develop learning artifacts to close the resilience and readiness gap in public emergency organizations. The research was approached with a naive inductive approach, and the strategy has been to meet the challenges with multiple mixed methods, and several public emergency organizations have been invited to take part in the research. Mostly, the studies have been cross-sectional, but the student-exercise have been executed over a 3-year period (longitude). The collection of data was initially done explanatory and descriptive, but exploratory data collection was collected to discuss and validate the findings. To analyze the data, socio-technical root-cause-analysis, categorical analysis from descriptive data/results questionnaires and expected/not expected or yes/no questions (dichotomous descriptive data), and qualitative effect analysis from the variety of actions, were used.
In this thesis summary, several key concepts from the research project that have been developed and published in conference proceedings and journals are presented, together with analyzes of data from case-studies, training and exercises executed in the period of the research. Two publications and one report (appendix) present the current level of resilience and readiness in public emergency organizations, five of the publications and the appendix presents learning knowledge and learning frameworks, and four of the publications presents frameworks to learn from exercises.
The major findings of this project are that a preparation for exercises framework and how to build EXCON teams for full-scaled information- and cyber security exercises has received very little attentions in the research community, and also in regard to societal training for readiness and resilience experiencing a cyber-attack. It was also established that 1) triple-loop-learning and 2) scoping development of serious games for information- and information- and cyber security incident response, are both relevant and new approaches to information security management exercises. Fine-tuned coordinated learning activities to meet the timeline of a scenario, and triple-loop-learning activities for use in the exercises are of great importance, and a user-centric-approach is of importance to be able to implement the activities at the right level in the organization and to close the gap one step at the time. Finally, socio-technical learning activities have shown that 1) targeted exercise goals developed in the scenarios are met during the exercises, 2) socio-technical step-by-step improvement can be developed based on the level of escalation maturity, and 3) organizations can learn from training and exercises. | en_US |
| dc.language.iso | eng | en_US |
| dc.publisher | NTNU | en_US |
| dc.relation.ispartofseries | Doctoral theses at NTNU;2023:112 | |
| dc.relation.haspart | Paper 1: Østby, Grethe; Kowalski, Stewart James. A case study of a municipality phishing attack measures - towards a socio-technical incident management framework. CEUR Workshop Proceedings 2021 ;Volum 3016. s. 32-45 Use permitted under Creative Commons License Attribution 4.0 International (CC BY 4.0) | en_US |
| dc.relation.haspart | Paper 2: Østby, Grethe; Kowalski, Stewart James; Katt, Basel. Towards a Maturity Improvement Process – Systemically Closing the Socio-Technical Gap. CEUR Workshop Proceedings 2020 ;Volum 2789. s. 195-205 Use permitted under Creative Commons License Attribution 4.0 International (CC BY 4.0) | en_US |
| dc.relation.haspart | Paper 3: Østby, Grethe; Kowalski, Stewart James. ORGANIZATIONAL LEARNING WITH CRISES. I: EDULEARN22 Proceedings. International Academy of Technology, Education and Development (IATED) 2022 s. 5215-5224
doi: 10.21125/edulearn.2022.1235
https://library.iated.org/view/OSTBY2022ORG | en_US |
| dc.relation.haspart | Paper 4: Østby, Grethe; Katt, Basel. Cyber Crisis Management Roles – A Municipality Responsibility Case Study. I: Information Technology in Disaster Risk Reduction. ITDRR 2019. IFIP Advances in Information and Communication Technology, vol 575.Springer Nature 2019 https://doi.org/10.1007/978-3-030-48939-7_15 | en_US |
| dc.relation.haspart | Paper 5: Østby, Grethe; Kowalski, Stewart James. Introducing Serious Games as a Master Course in Information Security Management Programs: Moving Towards Socio-Technical Incident Response Learning. I: Handbook of Research on Cross-Disciplinary Uses of Gamification in Organizations. IGI Global 2022
https://doi.org/10.4018/978-1-7998-9223-6 | en_US |
| dc.relation.haspart | Paper 6: Østby, Grethe; Kowalski, Stewart James. Preparing for cyber crisis management exercises. I: Augmented Cognition. Human Cognition and Behavior. Springer 2020 Lecture Notes in Computer Science book series (LNAI,volume 12197). s. 279-290
https://doi.org/10.1007/978-3-030-50439-7_19 | en_US |
| dc.relation.haspart | Paper 7: Østby, Grethe; Lovell, Kieren N.; Katt, Basel. EXCON Teams in Cyber Security Training. I: 2019 International Conference on Computational Science and Computational Intelligence (CSCI). IEEE conference proceedings 2020 ISBN 978-1-7281-5584-5. s. 14-19
https://doi.org/10.1109/CSCI49370.2019.00010 | en_US |
| dc.relation.haspart | Paper 8: Østby, Grethe; Berg, Lars; Kianpour, Mazaher; Katt, Basel; Kowalski, Stewart James. A Socio-Technical Framework to Improve cyber security training: A Work in Progress. CEUR Workshop Proceedings 2019 ;Volum 2398. s. 81-96 | en_US |
| dc.relation.haspart | Appendix 1: Hendelseshåndtering ved cyber-angrepet mot Østre Toten kommune https://www.ototen.no/aktuelt/rapport-etterdataangrepet. 15279.aspx | en_US |
| dc.title | Digital transformation of public security - developing tripleloop- learning artifacts to meet emerged information security incident response resilience and readiness challenges in public emergency organizations | en_US |
| dc.type | Doctoral thesis | en_US |
| dc.subject.nsi | VDP::Technology: 500::Information and communication technology: 550 | en_US |
