{"id":"https://openalex.org/W2000675095","doi":"https://doi.org/10.1145/1940941.1940964","title":"Threat based risk management in the federal sector","display_name":"Threat based risk management in the federal sector","publication_year":2010,"publication_date":"2010-10-01","ids":{"openalex":"https://openalex.org/W2000675095","doi":"https://doi.org/10.1145/1940941.1940964","mag":"2000675095"},"language":"en","primary_location":{"id":"doi:10.1145/1940941.1940964","is_oa":false,"landing_page_url":"https://doi.org/10.1145/1940941.1940964","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2010 Information Security Curriculum Development Conference","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5056240083","display_name":"Nathan Volk","orcid":null},"institutions":[{"id":"https://openalex.org/I172980758","display_name":"Kennesaw State University","ror":"https://ror.org/00jeqjx33","country_code":"US","type":"education","lineage":["https://openalex.org/I172980758"]}],"countries":["US"],"is_corresponding":true,"raw_author_name":"Nathan Volk","raw_affiliation_strings":["Kennesaw State University, Kennesaw, GA","Kennesaw State University, Kennesaw, Ga"],"affiliations":[{"raw_affiliation_string":"Kennesaw State University, Kennesaw, GA","institution_ids":["https://openalex.org/I172980758"]},{"raw_affiliation_string":"Kennesaw State University, Kennesaw, Ga","institution_ids":["https://openalex.org/I172980758"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":1,"corresponding_author_ids":["https://openalex.org/A5056240083"],"corresponding_institution_ids":["https://openalex.org/I172980758"],"apc_list":null,"apc_paid":null,"fwci":0.0,"has_fulltext":false,"cited_by_count":0,"citation_normalized_percentile":{"value":0.12942376,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":null,"biblio":{"volume":null,"issue":null,"first_page":"97","last_page":"106"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10734","display_name":"Information and Cyber Security","score":0.992900013923645,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10734","display_name":"Information and Cyber Security","score":0.992900013923645,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.9103999733924866,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/risk-management","display_name":"Risk management","score":0.7868093848228455},{"id":"https://openalex.org/keywords/risk-analysis","display_name":"Risk analysis (engineering)","score":0.5993138551712036},{"id":"https://openalex.org/keywords/government","display_name":"Government (linguistics)","score":0.5495792627334595},{"id":"https://openalex.org/keywords/audit","display_name":"Audit","score":0.5451109409332275},{"id":"https://openalex.org/keywords/business","display_name":"Business","score":0.5444868206977844},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.5402708649635315},{"id":"https://openalex.org/keywords/risk-assessment","display_name":"Risk assessment","score":0.4837036728858948},{"id":"https://openalex.org/keywords/risk-management-framework","display_name":"Risk management framework","score":0.441121369600296},{"id":"https://openalex.org/keywords/security-management","display_name":"Security management","score":0.4322676956653595},{"id":"https://openalex.org/keywords/threat","display_name":"Threat","score":0.4296583831310272},{"id":"https://openalex.org/keywords/it-risk-management","display_name":"IT risk management","score":0.4276905953884125},{"id":"https://openalex.org/keywords/federal-law","display_name":"Federal law","score":0.4127744734287262},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.34039437770843506},{"id":"https://openalex.org/keywords/information-security","display_name":"Information security","score":0.22353926301002502},{"id":"https://openalex.org/keywords/accounting","display_name":"Accounting","score":0.22052928805351257},{"id":"https://openalex.org/keywords/finance","display_name":"Finance","score":0.21715569496154785},{"id":"https://openalex.org/keywords/network-security-policy","display_name":"Network security policy","score":0.10158690810203552},{"id":"https://openalex.org/keywords/political-science","display_name":"Political science","score":0.09820154309272766},{"id":"https://openalex.org/keywords/law","display_name":"Law","score":0.09078729152679443},{"id":"https://openalex.org/keywords/legislation","display_name":"Legislation","score":0.08245864510536194}],"concepts":[{"id":"https://openalex.org/C32896092","wikidata":"https://www.wikidata.org/wiki/Q189447","display_name":"Risk management","level":2,"score":0.7868093848228455},{"id":"https://openalex.org/C112930515","wikidata":"https://www.wikidata.org/wiki/Q4389547","display_name":"Risk analysis (engineering)","level":1,"score":0.5993138551712036},{"id":"https://openalex.org/C2778137410","wikidata":"https://www.wikidata.org/wiki/Q2732820","display_name":"Government (linguistics)","level":2,"score":0.5495792627334595},{"id":"https://openalex.org/C199521495","wikidata":"https://www.wikidata.org/wiki/Q181487","display_name":"Audit","level":2,"score":0.5451109409332275},{"id":"https://openalex.org/C144133560","wikidata":"https://www.wikidata.org/wiki/Q4830453","display_name":"Business","level":0,"score":0.5444868206977844},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.5402708649635315},{"id":"https://openalex.org/C12174686","wikidata":"https://www.wikidata.org/wiki/Q1058438","display_name":"Risk assessment","level":2,"score":0.4837036728858948},{"id":"https://openalex.org/C164403151","wikidata":"https://www.wikidata.org/wiki/Q7336280","display_name":"Risk management framework","level":4,"score":0.441121369600296},{"id":"https://openalex.org/C83163435","wikidata":"https://www.wikidata.org/wiki/Q3954104","display_name":"Security management","level":2,"score":0.4322676956653595},{"id":"https://openalex.org/C17520342","wikidata":"https://www.wikidata.org/wiki/Q7797190","display_name":"Threat","level":5,"score":0.4296583831310272},{"id":"https://openalex.org/C95609273","wikidata":"https://www.wikidata.org/wiki/Q5975208","display_name":"IT risk management","level":3,"score":0.4276905953884125},{"id":"https://openalex.org/C2777006572","wikidata":"https://www.wikidata.org/wiki/Q1006612","display_name":"Federal law","level":3,"score":0.4127744734287262},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.34039437770843506},{"id":"https://openalex.org/C527648132","wikidata":"https://www.wikidata.org/wiki/Q189900","display_name":"Information security","level":2,"score":0.22353926301002502},{"id":"https://openalex.org/C121955636","wikidata":"https://www.wikidata.org/wiki/Q4116214","display_name":"Accounting","level":1,"score":0.22052928805351257},{"id":"https://openalex.org/C10138342","wikidata":"https://www.wikidata.org/wiki/Q43015","display_name":"Finance","level":1,"score":0.21715569496154785},{"id":"https://openalex.org/C117110713","wikidata":"https://www.wikidata.org/wiki/Q3394676","display_name":"Network security policy","level":4,"score":0.10158690810203552},{"id":"https://openalex.org/C17744445","wikidata":"https://www.wikidata.org/wiki/Q36442","display_name":"Political science","level":0,"score":0.09820154309272766},{"id":"https://openalex.org/C199539241","wikidata":"https://www.wikidata.org/wiki/Q7748","display_name":"Law","level":1,"score":0.09078729152679443},{"id":"https://openalex.org/C2777351106","wikidata":"https://www.wikidata.org/wiki/Q49371","display_name":"Legislation","level":2,"score":0.08245864510536194},{"id":"https://openalex.org/C138885662","wikidata":"https://www.wikidata.org/wiki/Q5891","display_name":"Philosophy","level":0,"score":0.0},{"id":"https://openalex.org/C41895202","wikidata":"https://www.wikidata.org/wiki/Q8162","display_name":"Linguistics","level":1,"score":0.0},{"id":"https://openalex.org/C29983905","wikidata":"https://www.wikidata.org/wiki/Q7445066","display_name":"Security service","level":3,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1145/1940941.1940964","is_oa":false,"landing_page_url":"https://doi.org/10.1145/1940941.1940964","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2010 Information Security Curriculum Development Conference","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[{"id":"https://metadata.un.org/sdg/16","display_name":"Peace, Justice and strong institutions","score":0.4399999976158142}],"awards":[],"funders":[],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":2,"referenced_works":["https://openalex.org/W63956261","https://openalex.org/W2621084254"],"related_works":["https://openalex.org/W642344797","https://openalex.org/W3003573127","https://openalex.org/W201042542","https://openalex.org/W2132746796","https://openalex.org/W2945640515","https://openalex.org/W2496445682","https://openalex.org/W2098014028","https://openalex.org/W2358390340","https://openalex.org/W2394086614","https://openalex.org/W2787198716"],"abstract_inverted_index":{"The":[0,33,77],"United":[1],"States":[2],"federal":[3,13,75,89],"government":[4],"has":[5],"many":[6],"regulations":[7],"and":[8,27,38],"laws":[9],"today":[10],"that":[11],"require":[12],"agencies":[14],"to":[15,31,72],"implement":[16],"a":[17,36,52,61],"risk":[18,40,48,62,90],"management":[19,41,49,57,91],"program.":[20],"Despite":[21],"these":[22],"efforts,":[23],"computer":[24],"security":[25],"intrusions":[26],"data":[28],"loss":[29],"continue":[30],"rise.":[32],"need":[34],"for":[35,84],"adaptable":[37],"quantifiable":[39],"approach":[42,50],"is":[43,51,58],"needed.":[44],"A":[45],"threat":[46],"based":[47,56,59],"potential":[53],"solution.":[54],"Threat":[55],"upon":[60],"rating":[63],"posed":[64],"by":[65],"individual":[66],"threats":[67,80],"which":[68],"could":[69,81],"carry":[70],"over":[71],"the":[73],"current":[74],"system.":[76],"quantification":[78],"of":[79,88],"also":[82],"allow":[83],"more":[85],"thorough":[86],"audits":[87],"programs.":[92]},"counts_by_year":[],"updated_date":"2025-11-06T03:46:38.306776","created_date":"2025-10-10T00:00:00"}