Barcelona on June 10-13, 2012ESADE, Barcelona, Spain

IS Security and Privacy

Track chairs

Mikko Siponen University of Oulu mikko.siponen@oulu.fi

Merrill Warkentin

Paul Lowry

Track description

Modern organizations have established processes and systems that are dependent on information that is exchanged via complex global networks. These processes, transactions, and information exchanges must be protected from a range of threats, both internal and external. Information security and privacy breaches trigger financial losses and threaten the reputations of organizations, and can also have a direct impact on individual home computer users, governments, and others.

This background provides the motivation for research which examines and explores the myriad problems and challenges posed by IS security and related privacy issues. To address these challenges, ECIS issues the “IS Security and Privacy” track to facilitate the development of rigorous IS research and theory development in the field of IS security and privacy. The key objective of this track is to encourage high quality research papers that have implications for IS security and privacy research and practice. In addition, it provides a forum in which research results can be debated and refined. Potential topics include, but are not limited, to:

• Development and implementation of IS security policies and procedures
• IS security in systems analysis and design
• IS security and privacy governance and management
• IS risk analysis and management
• Employees’ compliance with IS security procedures
• Insider abuse, noncompliance, and deterrence measures
• Home computer users’ information security behaviour
• IS security education and awareness
• Empirical studies of IS security economics
• Empirical studies on information security management standards
• Social, legal and ethical aspects of IS security and privacy
• Research methods and issues in IS security and privacy
• Privacy implications of individual computer users’ behaviour