Literature by the same author
plus at Google Scholar

Bibliografische Daten exportieren
 

Managing the Inevitable : A Maturity Model to Establish Incident Response Management Capabilities

Title data

Bitzer, Michael ; Häckel, Björn ; Leuthe, Daniel ; Ott, Joshua ; Stahl, Bastian ; Strobel, Jacqueline:
Managing the Inevitable : A Maturity Model to Establish Incident Response Management Capabilities.
In: Computers & Security. Vol. 125 (2023) . - 103050.
ISSN 0167-4048
DOI: https://doi.org/10.1016/j.cose.2022.103050

Official URL: Volltext

Project information

Project title:
Project's official title
Project's id
Projektgruppe WI IT-Sicherheit und Datenschutz
No information
Projektgruppe WI Digital Value Network
No information

Abstract in another language

Although the ongoing digital transformation offers new opportunities for organizations, more emphasis on information security is needed due to the evolving cyber-threat landscape. Despite all preventive measures, security incidents cannot entirely be mitigated. Organizations must establish incident response management to treat inevitable incidents in a structured manner and under considerable time pressure. If not handled, incidents can result in reputational or financial losses and disrupt business continuity. Especially organizations that have not addressed incident response management extensively need to understand which capabilities are required to develop their incident response management. However, research still lacks a practice-grounded and socio-technical conceptualization of those capabilities and their development. For such challenges, maturity models have proven valuable in practice and research. This paper follows a design science research approach to develop an incident response management maturity model (IRM3) closely aligned with practice requirements under a socio-technical lens. Iteratively applying and evaluating the IRM3 with seven real-world organizations leverages its comprehensive view based on four focus areas and 29 capability dimensions to understand which capabilities organizations need to approach incident response management. Building on existing research, this work provides a comprehensive perspective on incident response management and its associated capabilities. For practitioners, especially in organizations with initial incident response maturity, the IRM3 offers descriptive value when used as a status quo assessment tool and prescriptive value by outlining capabilities for successful incident response management.

Further data

Item Type: Article in a journal
Refereed: Yes
Keywords: design science research; incident response management; information security; maturity model; socio-technical
Institutions of the University: Faculties > Faculty of Law, Business and Economics > Department of Business Administration
Faculties > Faculty of Law, Business and Economics > Department of Business Administration > Chair Business Administration XVII - Information Systems and Value-Based Business Process Management
Faculties > Faculty of Law, Business and Economics > Department of Business Administration > Chair Business Administration XVII - Information Systems and Value-Based Business Process Management > Chair Information Systems and Value-Based Business Process Management - Univ.-Prof. Dr. Maximilian Röglinger
Research Institutions
Research Institutions > Affiliated Institutes
Research Institutions > Affiliated Institutes > Branch Business and Information Systems Engineering of Fraunhofer FIT
Research Institutions > Affiliated Institutes > FIM Research Center for Information Management
Faculties
Faculties > Faculty of Law, Business and Economics
Result of work at the UBT: Yes
DDC Subjects: 000 Computer Science, information, general works > 004 Computer science
300 Social sciences > 330 Economics
Date Deposited: 09 Jan 2023 13:45
Last Modified: 26 Sep 2023 12:35
URI: https://eref.uni-bayreuth.de/id/eprint/73213