Human and Organizational Issues for Resilient Communications

Anderson, Tom and Busby, Jerry and Gouglidis, Antonios and Hough, Karen and Hutchison, David and Rouncefield, Mark (2020) Human and Organizational Issues for Resilient Communications. In: Guide to Disaster-Resilient Communication Networks. Computer Communications and Networks . Springer, Cham. (In Press)

Full text not available from this repository.

Abstract

Human and organizational issues are able to create both vulnerabilities and resilience to threats. In this chapter, we investigate human and organizational factors, conducted through ethnographic studies of operators and sets of interviews with staff responsible for security, reliability and quality in two different organizations, which own and operate utility networks. Ethnography is a qualitative orientation to research that emphasizes the detailed observation and interview of people in naturally occurring settings. Our findings indicate that 'human error' forms the biggest threat to cyber-security and that there is a need for Security Operational Centres to document all cyber-security accidents. Also, we conclude that it will always be insufficient to assess mental security models in terms of their technical correctness, as it is sometimes more important to know how well they represent prevailing social issues and requirements. As a practical recommendation from this work, we suggest that utility organizations engage in penetration testing and perhaps other forms of vulnerability analysis, not only to discover specific vulnerabilities but also to learn more about the mental models they use.

Item Type:
Contribution in Book/Report/Proceedings
ID Code:
139383
Deposited By:
Deposited On:
10 Dec 2019 08:55
Refereed?:
Yes
Published?:
In Press
Last Modified:
24 Mar 2020 00:55