{"id":"https://openalex.org/W2078624766","doi":"https://doi.org/10.1145/2751957.2755506","title":"Complexity Reduction in Information Security Risk Assessment","display_name":"Complexity Reduction in Information Security Risk Assessment","publication_year":2015,"publication_date":"2015-06-02","ids":{"openalex":"https://openalex.org/W2078624766","doi":"https://doi.org/10.1145/2751957.2755506","mag":"2078624766"},"language":"en","primary_location":{"id":"doi:10.1145/2751957.2755506","is_oa":false,"landing_page_url":"https://doi.org/10.1145/2751957.2755506","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 2015 ACM SIGMIS Conference on Computers and People Research","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5075869486","display_name":"Glourise M. Haya","orcid":null},"institutions":[{"id":"https://openalex.org/I136722135","display_name":"Claremont Graduate University","ror":"https://ror.org/0157pnt69","country_code":"US","type":"education","lineage":["https://openalex.org/I136722135"]}],"countries":["US"],"is_corresponding":true,"raw_author_name":"Glourise M. Haya","raw_affiliation_strings":["Claremont Graduate University, Claremont, CA, USA"],"affiliations":[{"raw_affiliation_string":"Claremont Graduate University, Claremont, CA, USA","institution_ids":["https://openalex.org/I136722135"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":1,"corresponding_author_ids":["https://openalex.org/A5075869486"],"corresponding_institution_ids":["https://openalex.org/I136722135"],"apc_list":null,"apc_paid":null,"fwci":0.0,"has_fulltext":false,"cited_by_count":1,"citation_normalized_percentile":{"value":0.09348366,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":89,"max":94},"biblio":{"volume":null,"issue":null,"first_page":"5","last_page":"6"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10734","display_name":"Information and Cyber Security","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10734","display_name":"Information and Cyber Security","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T12034","display_name":"Digital and Cyber Forensics","score":0.9984999895095825,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9962000250816345,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/information-security","display_name":"Information security","score":0.7293109893798828},{"id":"https://openalex.org/keywords/information-security-management","display_name":"Information security management","score":0.673418402671814},{"id":"https://openalex.org/keywords/information-governance","display_name":"Information governance","score":0.5781132578849792},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.5712249875068665},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.5588487982749939},{"id":"https://openalex.org/keywords/threat","display_name":"Threat","score":0.5525305271148682},{"id":"https://openalex.org/keywords/risk-analysis","display_name":"Risk analysis (engineering)","score":0.5168790817260742},{"id":"https://openalex.org/keywords/security-information-and-event-management","display_name":"Security information and event management","score":0.5157711505889893},{"id":"https://openalex.org/keywords/risk-assessment","display_name":"Risk assessment","score":0.5154905915260315},{"id":"https://openalex.org/keywords/security-management","display_name":"Security management","score":0.5028014183044434},{"id":"https://openalex.org/keywords/risk-management","display_name":"Risk management","score":0.49936699867248535},{"id":"https://openalex.org/keywords/standard-of-good-practice","display_name":"Standard of Good Practice","score":0.4793860912322998},{"id":"https://openalex.org/keywords/corporate-governance","display_name":"Corporate governance","score":0.4722770154476166},{"id":"https://openalex.org/keywords/information-systems-security","display_name":"Information systems security","score":0.4641246795654297},{"id":"https://openalex.org/keywords/business","display_name":"Business","score":0.3222878575325012},{"id":"https://openalex.org/keywords/information-system","display_name":"Information system","score":0.2806747257709503},{"id":"https://openalex.org/keywords/cloud-computing-security","display_name":"Cloud computing security","score":0.25759124755859375},{"id":"https://openalex.org/keywords/security-service","display_name":"Security service","score":0.23883786797523499},{"id":"https://openalex.org/keywords/management-information-systems","display_name":"Management information systems","score":0.15302112698554993},{"id":"https://openalex.org/keywords/engineering","display_name":"Engineering","score":0.12841150164604187},{"id":"https://openalex.org/keywords/network-security-policy","display_name":"Network security policy","score":0.09652745723724365}],"concepts":[{"id":"https://openalex.org/C527648132","wikidata":"https://www.wikidata.org/wiki/Q189900","display_name":"Information security","level":2,"score":0.7293109893798828},{"id":"https://openalex.org/C148976360","wikidata":"https://www.wikidata.org/wiki/Q1662500","display_name":"Information security management","level":5,"score":0.673418402671814},{"id":"https://openalex.org/C189922023","wikidata":"https://www.wikidata.org/wiki/Q17056348","display_name":"Information governance","level":4,"score":0.5781132578849792},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.5712249875068665},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.5588487982749939},{"id":"https://openalex.org/C17520342","wikidata":"https://www.wikidata.org/wiki/Q7797190","display_name":"Threat","level":5,"score":0.5525305271148682},{"id":"https://openalex.org/C112930515","wikidata":"https://www.wikidata.org/wiki/Q4389547","display_name":"Risk analysis (engineering)","level":1,"score":0.5168790817260742},{"id":"https://openalex.org/C103377522","wikidata":"https://www.wikidata.org/wiki/Q3493999","display_name":"Security information and event management","level":4,"score":0.5157711505889893},{"id":"https://openalex.org/C12174686","wikidata":"https://www.wikidata.org/wiki/Q1058438","display_name":"Risk assessment","level":2,"score":0.5154905915260315},{"id":"https://openalex.org/C83163435","wikidata":"https://www.wikidata.org/wiki/Q3954104","display_name":"Security management","level":2,"score":0.5028014183044434},{"id":"https://openalex.org/C32896092","wikidata":"https://www.wikidata.org/wiki/Q189447","display_name":"Risk management","level":2,"score":0.49936699867248535},{"id":"https://openalex.org/C47309137","wikidata":"https://www.wikidata.org/wiki/Q7598357","display_name":"Standard of Good Practice","level":5,"score":0.4793860912322998},{"id":"https://openalex.org/C39389867","wikidata":"https://www.wikidata.org/wiki/Q380767","display_name":"Corporate governance","level":2,"score":0.4722770154476166},{"id":"https://openalex.org/C2988319471","wikidata":"https://www.wikidata.org/wiki/Q189900","display_name":"Information systems security","level":4,"score":0.4641246795654297},{"id":"https://openalex.org/C144133560","wikidata":"https://www.wikidata.org/wiki/Q4830453","display_name":"Business","level":0,"score":0.3222878575325012},{"id":"https://openalex.org/C180198813","wikidata":"https://www.wikidata.org/wiki/Q121182","display_name":"Information system","level":2,"score":0.2806747257709503},{"id":"https://openalex.org/C184842701","wikidata":"https://www.wikidata.org/wiki/Q370563","display_name":"Cloud computing security","level":3,"score":0.25759124755859375},{"id":"https://openalex.org/C29983905","wikidata":"https://www.wikidata.org/wiki/Q7445066","display_name":"Security service","level":3,"score":0.23883786797523499},{"id":"https://openalex.org/C29848774","wikidata":"https://www.wikidata.org/wiki/Q61905","display_name":"Management information systems","level":3,"score":0.15302112698554993},{"id":"https://openalex.org/C127413603","wikidata":"https://www.wikidata.org/wiki/Q11023","display_name":"Engineering","level":0,"score":0.12841150164604187},{"id":"https://openalex.org/C117110713","wikidata":"https://www.wikidata.org/wiki/Q3394676","display_name":"Network security policy","level":4,"score":0.09652745723724365},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.0},{"id":"https://openalex.org/C79974875","wikidata":"https://www.wikidata.org/wiki/Q483639","display_name":"Cloud computing","level":2,"score":0.0},{"id":"https://openalex.org/C119599485","wikidata":"https://www.wikidata.org/wiki/Q43035","display_name":"Electrical engineering","level":1,"score":0.0},{"id":"https://openalex.org/C10138342","wikidata":"https://www.wikidata.org/wiki/Q43015","display_name":"Finance","level":1,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1145/2751957.2755506","is_oa":false,"landing_page_url":"https://doi.org/10.1145/2751957.2755506","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 2015 ACM SIGMIS Conference on Computers and People Research","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[{"id":"https://metadata.un.org/sdg/16","score":0.6100000143051147,"display_name":"Peace, Justice and strong institutions"}],"awards":[],"funders":[],"has_content":{"grobid_xml":false,"pdf":false},"content_urls":null,"referenced_works_count":7,"referenced_works":["https://openalex.org/W636341350","https://openalex.org/W1963983949","https://openalex.org/W1964165805","https://openalex.org/W1994558055","https://openalex.org/W1998200814","https://openalex.org/W2002356434","https://openalex.org/W2008731174"],"related_works":["https://openalex.org/W1557523735","https://openalex.org/W2369588203","https://openalex.org/W2605407163","https://openalex.org/W4308535653","https://openalex.org/W1208953748","https://openalex.org/W2188169376","https://openalex.org/W3199571163","https://openalex.org/W4308628601","https://openalex.org/W406370265","https://openalex.org/W3048840722"],"abstract_inverted_index":{"Results":[0],"of":[1,56,94],"research":[2,80],"done":[3],"by":[4],"Dlamini":[5],"et":[6],"al.":[7],"[5]":[8],"clearly":[9],"show":[10],"information":[11,57,86],"security":[12,58,77,87],"was":[13],"once":[14],"focused":[15],"around":[16],"technical":[17],"issues.":[18],"However,":[19],"over":[20],"time,":[21],"that":[22],"approach":[23],"transitioned":[24],"to":[25,70,76,82],"a":[26,54,84],"more":[27],"strategic":[28],"governance":[29],"model":[30,90],"where":[31],"legal":[32],"and":[33,38],"regulatory":[34],"compliance,":[35],"risk":[36,59,88],"management,":[37],"digital":[39],"forensics":[40],"disciplines":[41],"became":[42],"the":[43,47,64,92],"significant":[44],"contributors":[45],"in":[46,53],"domain.":[48],"This":[49,79],"focus":[50],"has":[51],"resulted":[52],"proliferation":[55],"assessment":[60,89],"models,":[61],"which":[62],"on":[63],"whole,":[65],"have":[66],"not":[67],"necessarily":[68],"helped":[69],"reduce":[71],"risks":[72],"or":[73],"appropriately":[74],"respond":[75],"events.":[78],"seeks":[81],"develop":[83],"new":[85],"through":[91],"aggregation":[93],"existing":[95],"models.":[96]},"counts_by_year":[{"year":2023,"cited_by_count":1}],"updated_date":"2025-11-06T03:46:38.306776","created_date":"2025-10-10T00:00:00"}