Efficient Resource Utilization in Information Security Risk Management Investment can improve organization resiliency to information security threats through identifying key information assets and security risks so that information security expenditures can be directed cost effectively. The purpose of this study is to determine if framing and evaluation components of prospect theory informs information security investment decisions. An empirical study was conducted on six microfinance enterprises using Cochran’s correctional formula. Mediation Regression Analysis (MRA) was used to determine the impact of organization and human factors on efficient information security risk management investment. The study established that Rational Choice Decision Models (RCDM) in the context of information security investment needs to be supplemented with risk perception measurement and account for individual level decision biases.
Title = "Efficient Resource Utilization in Information Security Risk Management Investment",
Journal ="International Journal of Computer Applications Technology and Research(IJCATR)",
Volume = "7",
Pages ="35 - 108",
Year = "2018",
Authors ="Mitende Nicholus Nyapete, Prof. Anthony Rodrigues, Dr. Samuel Liyala"}
The paper proposes the use of prospect theory in information security investment
The papers identifies challenges to efficient information security management investment
The paper proposes a model for efficient information security management investments
The paper highlights the shortcomings of applying utility theory based models in information security investment.