Information Security and Privacy Management - CCIS
Information Security and Privacy Management
The activities of Information Security and Privacy Management group provide theoretical, empirical and clinical research results to modeling, measurement and management of information security. This knowledge is applicable to the community by answering questions on the site and come up with solutions to problems.
The group has a special responsibility towards NTNU´s course of study at Masters level in the field. The research by the group helps with a wide range of results on socio-technical system security, covering the social, psychological, legal, ethical, cultural, political and rhetorical education aspect. The group also covers the technical aspect of cyber and information security management.
Research in the group centers along 3 major themes:
- modeling
- measuring
- managing
Theoretical and empirical research is carried out on information security management problems and solutions. Research work is also carried out in the area of security and privacy metrics which also included governance and compliance issues. Action and applied research is performed in the group to describe and understand the management practice used today and to make suggestions on how they can be improved through evidence-based measures. The group attempts to gather data on management decision-making behaviors through agent-based simulations and serious games research, including megagames.