Back to Search
Start Over
Addressing consumerization of IT risks with nudging
- Source :
- International Journal of Information Systems and Project Management, Vol 03, Iss 03, Pp 5-22 (2015)
- Publication Year :
- 2022
-
Abstract
- In this work we address the main issues of Information Technology (IT) consumerization that are related to security risks, and vulnerabilities of devices used within Bring Your Own Device (BYOD) strategy in particular. We propose a ‘soft’ mitigation strategy for user actions based on nudging, widely applied to health and social behavior influence. In particular, we propose a complementary, less strict, more flexible Information Security policies, based on risk assessment of device vulnerabilities and threats to corporate data and devices, combined with a strategy of influencing security behavior by nudging. We argue that nudging, by taking into account the context of the decision-making environment, and the fact that the employee may be in better position to make a more appropriate decision, may be more suitable than strict policies in situations of uncertainty of security-related decisions. Several examples of nudging are considered for different tested and potential scenarios in security context.
- Subjects :
- lcsh:Management. Industrial management
Information Systems and Management
Operations research
business.industry
Strategy and Management
Bring your own device
Information technology
Context (language use)
security
mitigation strategies
Security context
consumerization
Management Information Systems
Work (electrical)
Risk analysis (engineering)
lcsh:HD28-70
consumerisation
nudging
Position (finance)
Information security policy
Sociology
business
risks
Subjects
Details
- ISSN :
- 21827788
- Volume :
- 3
- Database :
- OpenAIRE
- Journal :
- International Journal of Information Systems and Project Management
- Accession number :
- edsair.doi.dedup.....7cb37affeeda19e955458d8008a4989c
- Full Text :
- https://doi.org/10.12821/ijispm030301