Cybersecurity compliance analysis as a service: Requirements specification and application scenarios

Furfaro, Angelo; Gallo, Teresa; Garro, Alfredo; Saccà, Domenico; Tundis, Andrea

doi:10.1002/cpe.4289

Cited by 5 publications

(2 citation statements)

References 37 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Unlike cybersecurity compliance analysis, which is methodologically structured (Furfaro et al, 2018), human compliance of cybersecurity polices is cognitive-based and depend on a range of behavioural factors. Vulnerabilities are multiplying too, thanks to increasingly interconnected people and businesses, as well as the expanding "Internet of Things" (Susskind, 2014).…”

Section: Discussionmentioning

confidence: 99%

Cybersecurity Policy Compliance in Higher Education: A Theoretical Framework

Yusif

Hafeez‐Baig

2021

Journal of Applied Security Research

View full text Add to dashboard Cite

Higher education institutions (HEIs) are open in their nature, decentralized, rich in population and private data, home to some ground-breaking research and innovations. As such, HEIs attract quite a substantial threat and cyberattacks due to their heavy reliance on the Internet. However, there is poor cybersecurity culture and low awareness that are motivated by generational differences that are characterised by "digital natives" and "digital residents" and gaps in technology savviness impacting cybersecurity compliance in a specific higher education environment. Whilst technologies to prevent and response to cyberattacks have been inevitable, their effectiveness lie extensively rather on heterogeneous human factors in enforcing their principles in the context of compliance. Thus, the objective of this study was to develop a theoretical framework for effective cybersecurity compliance strategy in HEIs. To do this, we would focus on critical factors such as cybersecurity and organizational cultures into compliance theory and protected motivated theory (PMT) respectively to help in understanding how cybersecurity compliance can be achieved in HEIs.

show abstract

Section: Discussionmentioning

confidence: 99%

Cybersecurity Policy Compliance in Higher Education: A Theoretical Framework

Yusif

Hafeez‐Baig

2021

Journal of Applied Security Research

View full text Add to dashboard Cite

show abstract

“…Privacy and security in cloud computing are among the most important issues that still need to be addressed especially for emerging IoT and big data applications. As a contribution in this field, Furfaro et al, in their article “ Cybersecurity Compliance Analysis as a Service: Requirements Specification and Application Scenarios ,” highlighted some specific requirements, which have to be taken into account when modeling a cloud service for cybersecurity compliance analysis (CCA). They have mainly adopted recently proposed requirements methodology, called GOReM (goal‐oriented requirements methodology), to support the conceptualization and subsequent implementation of CCA services.…”

Section: Themes Of This Special Issuementioning

confidence: 99%