Security threat classification for outsourced IT projects

Many organisations have adopted outsourcing for delivering critical IT services to their clients. Organisations need to identify the potential security threats of outsourced IT projects as early as possible to avoid or mitigate security incidents. Existing threat classification approaches suffer fro...

Full description

Saved in:
Bibliographic Details
Main Authors: Almutairi, Moneef, Riddle, Stephen
Format: Conference Proceeding
Language:English
Subjects:
Context
Hardware
Information systems
outsourced IT projects
Outsourcing
outsourcing threat classification
Security
Software
threat classification approach
Online Access:Request full text
Tags: Add Tag
No Tags, Be the first to tag this record!
Description
Summary:Many organisations have adopted outsourcing for delivering critical IT services to their clients. Organisations need to identify the potential security threats of outsourced IT projects as early as possible to avoid or mitigate security incidents. Existing threat classification approaches suffer from limitations such as the lack of exhaustive threat classification criteria. In this paper, we propose a threat classification approach for outsourced IT projects. This approach aims to allow organisations to identify, minimise, mitigate, or eliminate security threats at the early stages of project execution.
ISSN:2151-1357
DOI:10.1109/RCIS.2017.7956579