Incident Management

14,000,000 Leading Edge Experts on the ideXlab platform

Scan Science and Technology

Contact Leading Edge Experts & Companies

Scan Science and Technology

Contact Leading Edge Experts & Companies

The Experts below are selected from a list of 35424 Experts worldwide ranked by ideXlab platform

Maria B Line - One of the best experts on this subject based on the ideXlab platform.

  • information security Incident Management current practice as reported in the literature
    Computers & Security, 2014
    Co-Authors: Inger Anne Tondel, Maria B Line, Martin Gilje Jaatun
    Abstract:

    This paper reports results of a systematic literature review on current practice and experiences with Incident Management, covering a wide variety of organisations. Identified practices are summarised according to the Incident Management phases of ISO/IEC 27035. The study shows that current practice and experience seem to be in line with the standard. We identify some inspirational examples that will be useful for organisations looking to improve their practices, and highlight which recommended practices generally are challenging to follow. We provide suggestions for addressing the challenges, and present identified research needs within information security Incident Management.

  • information security Incident Management planning for failure
    2014 Eighth International Conference on IT Security Incident Management & IT Forensics, 2014
    Co-Authors: Maria B Line, Inger Anne Tondel, Martin Gilje Jaatun
    Abstract:

    This paper reports on an interview study on information security Incident Management that has been conducted in organizations operating industrial control systems that are highly dependent on conventional IT systems. Six distribution service operators from the power industry have participated in the study. We have investigated current practice regarding planning and preparation activities for Incident Management, and identified similarities and differences between the two traditions of conventional IT systems and industrial control systems. The findings show that there are differences between the IT and ICS disciplines in how they perceive an information security Incident and how they plan and prepare for responding to such. The completeness of documented plans and procedures for Incident Management varies. Where documentation exists, this is in general not well-established throughout the organization. Training exercises with specific focus on information security are rarely performed. There is a need to create amore unified approach to information security Incident Management in order for the power industry to be sufficiently prepared to meet the challenges posed by Smart Grids in the near future.

  • a case study preparing for the smart grids identifying current practice for information security Incident Management in the power industry
    2013 Seventh International Conference on IT Security Incident Management and IT Forensics, 2013
    Co-Authors: Maria B Line
    Abstract:

    The power industry faces the implementation of smart grids, which will introduce new information security threats to the power automation systems. The ability to appropriately prepare for, and respond to, information security Incidents, is of utmost importance, as it is impossible to prevent all possible Incidents from occurring. Current trends even show that the power industry is an attractive target for hackers. A main challenge for the power industry to overcome is the differences regarding culture and traditions, knowledge and communication, between ICT staff and power automation staff. This paper presents the background, research method and preliminary results from a case study identifying current practice on information security Incident Management in the power industry.

Martin Gilje Jaatun - One of the best experts on this subject based on the ideXlab platform.

  • information security Incident Management current practice as reported in the literature
    Computers & Security, 2014
    Co-Authors: Inger Anne Tondel, Maria B Line, Martin Gilje Jaatun
    Abstract:

    This paper reports results of a systematic literature review on current practice and experiences with Incident Management, covering a wide variety of organisations. Identified practices are summarised according to the Incident Management phases of ISO/IEC 27035. The study shows that current practice and experience seem to be in line with the standard. We identify some inspirational examples that will be useful for organisations looking to improve their practices, and highlight which recommended practices generally are challenging to follow. We provide suggestions for addressing the challenges, and present identified research needs within information security Incident Management.

  • information security Incident Management planning for failure
    2014 Eighth International Conference on IT Security Incident Management & IT Forensics, 2014
    Co-Authors: Maria B Line, Inger Anne Tondel, Martin Gilje Jaatun
    Abstract:

    This paper reports on an interview study on information security Incident Management that has been conducted in organizations operating industrial control systems that are highly dependent on conventional IT systems. Six distribution service operators from the power industry have participated in the study. We have investigated current practice regarding planning and preparation activities for Incident Management, and identified similarities and differences between the two traditions of conventional IT systems and industrial control systems. The findings show that there are differences between the IT and ICS disciplines in how they perceive an information security Incident and how they plan and prepare for responding to such. The completeness of documented plans and procedures for Incident Management varies. Where documentation exists, this is in general not well-established throughout the organization. Training exercises with specific focus on information security are rarely performed. There is a need to create amore unified approach to information security Incident Management in order for the power industry to be sufficiently prepared to meet the challenges posed by Smart Grids in the near future.

Kaan Ozbay - One of the best experts on this subject based on the ideXlab platform.

  • extended implementation methodology for virtual sensors web based real time transportation data collection and analysis for Incident Management
    94th TRB Annual Conference (CD-ROM) Washington D.C. January 2015., 2019
    Co-Authors: Abdullah Kurkcu, Ender Faruk Morgul, Kaan Ozbay
    Abstract:

    Open data sources and the use of social media data are increasingly gaining attention as important information providers in transportation and Incident Management. In this paper, we present practical evidence for the emerging potential of on-line and open data sources. We combine and extend our prior research on virtual sensors (1) by integrating real-time Incident information and social media network engagement. The fundamental contribution of this paper is to develop an extended virtual sensor (EVS) framework to provide an automated travel time data collection methodology as Incidents occur. In addition, it has also been shown that social media data can be potentially useful for more effective real-time Incident response. The proposed framework can be easily modified and used to evaluate travel time impacts of Incidents on roadways, clearance times, and make use of social media data in terms of obtaining time critical Incident related information. Kurkcu, Morgul, Ozbay 4

  • extended implementation method for virtual sensors web based real time transportation data collection and analysis for Incident Management
    Transportation Research Record, 2015
    Co-Authors: Abdullah Kurkcu, Ender Faruk Morgul, Kaan Ozbay
    Abstract:

    Open data sources and social media data are gaining increasing attention as important information providers in transportation and Incident Management. In this paper, practical evidence for the emerging potential of online and open data sources is presented. The authors’ previous research on virtual sensors is combined and extended by integrating real-time Incident information and social media network engagement. The fundamental contribution of this paper is the development of an extended virtual sensor framework to provide an automated travel time data collection method as Incidents occur. In addition, social media data can be useful for more effective real-time Incident response. The proposed framework can easily be modified and used to evaluate travel time effects of Incidents on roadways and clearance times and to make use of social media data in obtaining time-critical Incident-related information.

  • Incident Management IN INTELLIGENT TRANSPORTATION SYSTEMS
    1999
    Co-Authors: Kaan Ozbay, Pushkin Kachroo
    Abstract:

    Since the conception of Intelligent Transportation Systems (ITS) in the 1980s, many transportation researchers have also worked on the development of Incident Management models and integrated systems for real-time operations. ITS created the required infrastructure for collecting, processing, and managing real-time traffic data that can be used to develop on-line Incident Management strategies. This book provides the reader with a broad picture of the overall Incident Management process in the context of ITS along with a quick review of the models and systems developed by numerous researchers worldwide. This book is a direct result of the long-term Incident Management research efforts at the Virginia Tech Center for Transportation Research. The initial work was performed under work order #DTFH71-DP86-VA-20 given to VDOT by FHWA. In addition to this initial contract, the FHWA Intelligent Transportation Systems Research Center of Excellence (RCE) program and VDOT sponsored different parts of the research described here.

Inger Anne Tondel - One of the best experts on this subject based on the ideXlab platform.

  • information security Incident Management current practice as reported in the literature
    Computers & Security, 2014
    Co-Authors: Inger Anne Tondel, Maria B Line, Martin Gilje Jaatun
    Abstract:

    This paper reports results of a systematic literature review on current practice and experiences with Incident Management, covering a wide variety of organisations. Identified practices are summarised according to the Incident Management phases of ISO/IEC 27035. The study shows that current practice and experience seem to be in line with the standard. We identify some inspirational examples that will be useful for organisations looking to improve their practices, and highlight which recommended practices generally are challenging to follow. We provide suggestions for addressing the challenges, and present identified research needs within information security Incident Management.

  • information security Incident Management planning for failure
    2014 Eighth International Conference on IT Security Incident Management & IT Forensics, 2014
    Co-Authors: Maria B Line, Inger Anne Tondel, Martin Gilje Jaatun
    Abstract:

    This paper reports on an interview study on information security Incident Management that has been conducted in organizations operating industrial control systems that are highly dependent on conventional IT systems. Six distribution service operators from the power industry have participated in the study. We have investigated current practice regarding planning and preparation activities for Incident Management, and identified similarities and differences between the two traditions of conventional IT systems and industrial control systems. The findings show that there are differences between the IT and ICS disciplines in how they perceive an information security Incident and how they plan and prepare for responding to such. The completeness of documented plans and procedures for Incident Management varies. Where documentation exists, this is in general not well-established throughout the organization. Training exercises with specific focus on information security are rarely performed. There is a need to create amore unified approach to information security Incident Management in order for the power industry to be sufficiently prepared to meet the challenges posed by Smart Grids in the near future.

Bradford J Willke - One of the best experts on this subject based on the ideXlab platform.

  • Best Practices for National Cyber Security: Building a National Computer Security Incident Management Capability, Version 2.0
    2018
    Co-Authors: John Haller, Samuel A Merrell, Matthew J Butkovic, Bradford J Willke
    Abstract:

    As nations recognize that their critical infrastructures have integrated sophisticated information and communications technologies (ICT) to provide greater efficiency and reliability, they quickly realize the need to effectively manage risk arising from the use of these technologies. Establishing a national computer security Incident Management capability can be an important step in managing that risk. In this document, this capability is referred to as a National CSIRT, although the specific organizational form may vary among nations. Nations face various challenges when working to strengthen Incident Management, such as the lack of information providing guidance for establishing a national capability, determining how this capability can support national cyber security, and managing the national Incident Management capability. This document, first in the Best Practices for National Cyber Security series, provides information that interested organizations and governments can use to develop a national Incident Management capability. The document explains the need for national Incident Management and provides strategic goals, enabling goals, and additional resources pertaining to the establishment of National CSIRTs and organizations like them.

  • best practices for national cyber security building a national computer security Incident Management capability version 2 0
    2010
    Co-Authors: John Haller, Samuel A Merrell, Matthew J Butkovic, Bradford J Willke
    Abstract:

    Abstract : As nations recognize that their critical infrastructures have integrated sophisticated information and communications technologies (ICT) to provide greater efficiency and reliability, they quickly acknowledge the need to effectively manage risk arising from the use of these technologies. Establishing a national computer security Incident Management capability can be an important step in managing that risk. In this document, this capability is referred to as a National Computer Security Incident Response Team (National CSIRT), although the specific organizational form may vary among nations. The challenge that nations face when working to strengthen Incident Management is the lack of information that provides guidance for establishing a capacity appropriate to the nation, understanding how it supports national cyber security, and managing the national Incident Management capability. This document -first in the Best Practices for National Cyber Security Series - provides insight that interested organizations and governments can use to begin to develop a national Incident Management capability. The document explains the need for national Incident Management and provides strategic goals, enabling goals, and additional resources pertaining to the establishment of National CSIRTs and organizations like them.

Related terms

  • risk based flood incident
Incident Management - 15 days free trial to Access Experts & Abstracts