Consumerisation of IT: Mitigating risky user actions and improving productivity with nudging

Iryna Yevseyeva, Charles Morisset, James Turland, Lynne Coventry, Thomas Groß, Christopher Laing, Aad van Moorsel

Research output: Contribution to journalArticlepeer-review

6 Downloads (Pure)

Abstract

In this work we address the main issues of IT consumerisation that are related to security risks, and propose a ‘soft’ mitigation strategy for user actions based on nudging, widely applied to health and social behaviour influence. In particular, we propose a complementary, less strict, more flexible Information Security policies, based on risk assessment of device vulnerabilities and threats to corporate data and devices, combined with a strategy of influencing security behaviour by nudging. We argue that nudging, by taking into account the context of the decision-making environment, and the fact that the employee may be in better position to make a more appropriate decision, may be more suitable than strict policies in situations of uncertainty of security related decisions.
Original languageEnglish
Pages (from-to)508-517
JournalProcedia Technology
Volume16
DOIs
Publication statusPublished - 11 Nov 2014

Fingerprint

Dive into the research topics of 'Consumerisation of IT: Mitigating risky user actions and improving productivity with nudging'. Together they form a unique fingerprint.

Cite this