Consumerisation of IT: Mitigating Risky User Actions and Improving Productivity with Nudging
| Autor: | Charles Morisset, Lynne Coventry, Iryna Yevseyeva, James Turland, Thomas Groß, Aad van Moorsel, Christopher Laing |
|---|---|
| Rok vydání: | 2014 |
| Předmět: |
Engineering
Operations research business.industry G400 Context (language use) security Social behaviour mitigation strategies Work (electrical) Risk analysis (engineering) consumerisation nudging General Earth and Planetary Sciences Position (finance) Information security policy business Risk assessment risks Productivity General Environmental Science |
| Zdroj: | Procedia Technology. 16:508-517 |
| ISSN: | 2212-0173 |
| DOI: | 10.1016/j.protcy.2014.10.118 |
| Popis: | In this work we address the main issues of IT consumerisation that are related to security risks, and propose a ‘soft’ mitigation strategy for user actions based on nudging, widely applied to health and social behaviour influence. In particular, we propose a complementary, less strict, more flexible Information Security policies, based on risk assessment of device vulnerabilities and threats to corporate data and devices, combined with a strategy of influencing security behaviour by nudging. We argue that nudging, by taking into account the context of the decision-making environment, and the fact that the employee may be in better position to make a more appropriate decision, may be more suitable than strict policies in situations of uncertainty of security-related decisions. |
| Databáze: | OpenAIRE |
| Externí odkaz: |
|