Staffing for Security: Don't Optimize
| Title | Staffing for Security: Don't Optimize |
| Publication Type | Journal Article |
| Year of Publication | 2014 |
| Authors | Lesk, M. |
| Journal | Security Privacy, IEEE |
| Volume | 12 |
| Pagination | 71-73 |
| Date Published | July |
| ISSN | 1540-7993 |
| Keywords | botnets, computer security, Data security, Economics, IT security employees, Organizations, Personnel, privacy, security, security of data, security threats, Software development, staff allocation optimization, staffing |
| Abstract | Security threats are irregular, sometimes very sophisticated, and difficult to measure in an economic sense. Much published data about them comes from either anecdotes or surveys and is often either not quantified or not quantified in a way that's comparable across organizations. It's hard even to separate the increase in actual danger from year to year from the increase in the perception of danger from year to year. Staffing to meet these threats is still more a matter of judgment than science, and in particular, optimizing staff allocation will likely leave your organization vulnerable at the worst times. |
| DOI | 10.1109/MSP.2014.78 |
| Citation Key | 6876258 |