Show simple item record

dc.contributor.authorSerfontein, Rudi
dc.contributor.authorKruger, Hennie
dc.contributor.authorDrevin, Lynette
dc.identifier.citationSerfontein, R. et al. 2019. Identifying information security risks in a social network using self-organising maps. (In Drevin, L. & Theocharidou, M., eds. Information security education. Education in proactive information security. WISE 2019. IFIP Advances in Information and Communication Technology. 12th IFIP WG 11.8 World Conference, WISE 12 Lisbon, Portugal, June 25–27, 2019. Springer, Cham. Vol 557:114-126. []en_US
dc.identifier.isbn978-3-030-23451-5 (Online)
dc.description.abstractManaging information security risks in an organisation is one of the most important tasks an organisation has. Unfortunately, due to the complexity of most organisational systems, identifying information security risks can be difficult. One way to identify possible risks in an organisation is to make use of Social Network Analysis (SNA). While they can be used to identify risks, the metrics calculated using SNA are often numerous and daunting to managers unfamiliar with SNA. Furthermore, as the data in this form tend to be uncomfortable to process, educating managers about risks in their organisation can be quite difficult. Also, as these metrics often require quantitative processing in order to be useful, SNA on its own is not always an attractive method to use to identify risks in an organisation. In this paper the use of self-organising maps to identify possible information security risks in an organisation is investigated. Risk data were obtained from an organisation that deals in risk management, which were used to build a social network. A number of metrics associated with risk were calculated from the network, and these metrics were used to cluster the various entities using a self-organising map. Certain entities that pose a possible information security risk were identified. The results suggest that it may be viable to use self-organising maps, in concord with SNA, to more easily identify risks in an organisation using visual methodsen_US
dc.subjectSelf-organising mapsen_US
dc.subjectSocial network analysisen_US
dc.subjectInformation securityen_US
dc.titleIdentifying information security risks in a social network using self-organising mapsen_US
dc.typeBook chapteren_US
dc.contributor.researchID10067132 - Drevin, Lynette
dc.contributor.researchID12066621 - Kruger, Hendrik Abraham
dc.contributor.researchID21165750 - Serfontein, Rudi

Files in this item


There are no files associated with this item.

This item appears in the following Collection(s)

Show simple item record