Browse by author
Lookup NU author(s): Wen Zeng,
Professor Aad van Moorsel
Full text for this publication is not currently held within this repository. Alternative links are provided below where available.
By providing effective access control mechanisms, enterprise information security technologies have been proven successful in protecting the confidentiality of sensitive information in business organizations. However, such security mechanisms typically reduce the work productivity of the staff, by making them spend time working on non-project related tasks. Therefore, organizationshave to invest a signification amount of capital in theinformation security technologies, and thento continue incurring additional costs.In this study, we investigate the performance ofadministrators in an information help desk, and thenon-productive time (NPT) in an organization, resulting fromthe implementation ofinformation security technologies. An approximate analytical solution is discussed first,and the loss of staff member productivity is quantified using non-productive time. Stochastic Petri nets are then used to provide simulation results. The presented study can help information security managers to make investment decisions, and to take actions toward reducing the cost of information security technologies, so that a balance is kept between information security expense, resource drain and effectiveness of security technologies.
Author(s): Zeng W, Koutny M, van Moorsel A
Publication type: Conference Proceedings (inc. Abstract)
Publication status: Published
Conference Name: 14th IEEE International Conference on Computer and Information Technology (CIT)
Year of Conference: 2014
Online publication date: 15/12/2014
Acceptance date: 01/01/1900
Library holdings: Search Newcastle University Library for this item