2 options
Information Security - Risk Management Framework : For Social Engineering Attacks and Digital Prevention Techniques / Shekh Abdullah-Al-Musa Ahmed.
- Format:
- Book
- Author/Creator:
- Abdullah-Al-Musa Ahmed, Shekh, author.
- Language:
- English
- Subjects (All):
- Computer security.
- Computer security--Decision making.
- Physical Description:
- 1 online resource (206 pages)
- Edition:
- First edition.
- Place of Publication:
- Washington, D.C. : Academica Press, [2025]
- Summary:
- This book by Dr. Shekh Abdullah-Al-Musa Ahmed presents a comprehensive framework for managing information security risks, specifically focusing on social engineering attacks and digital prevention techniques. It emphasizes the critical importance of safeguarding digital data in today's cyber threat landscape. The book is structured to provide a holistic understanding of digital data protection, covering topics such as the types of digital information, legal and regulatory frameworks, and risk management methodologies. It offers practical insights, real-world examples, and expert interviews to empower readers with the tools and strategies needed to defend against cyber threats. The book targets both seasoned cybersecurity professionals and novices, aiming to enhance expertise and understanding of digital data protection. It also explores emerging technologies, trends, and threats in the cybersecurity field, equipping readers with foresight and resilience to anticipate future challenges. Generated by AI.
- Contents:
- Information Security - Risk Management Framework:
- For Social Engineering Attacksand Digital Prevention Techniques
- Dr. Shekh Abdullah-Al-Musa Ahmed
- Proposed framework user manual. Recommended related worksheets for use in the proposed framework.
- Proposed framework. Draft of the proposed framework.
- Refined High-level Framework.
- Information Security - Risk Management Framework:
- Academica PressWashington~London
- Library of Congress Cataloging-in-Publication Data
- Names: Ahmed, Shekh Abdullah-Al-Musa (author)
- Title: Information security - risk management framework : for social engineering attacks and digital prevention techniques | Ahmed, Shekh Abdullah-Al-Musa.
- Description: Washington : Academica Press, 2025. | Includes references.
- Identifiers: LCCN 2024944093 | ISBN 9781680534238 (hardcover) | 9781680534245 (e-book)
- Copyright 2025 Shekh Abdullah-Al-Musa Ahmed
- About the Author
- /
- Dr. Shekh Abdullah-Al-Musa Ahmed is Assistant Professor in the Department of Computing and Information System at Daffodil International University (DIU). Before joining DIU, he was Assistant Professor in the Faculty of Information and Communication Technology and Department of Computer and Communication Technology at Universiti Tunku Abdul Rahman (UTAR), in Malaysia. He has also worked at Bangladesh University of Business and Technology (BUBT) and Stamford University, Bangladesh. Dr. Ahmed obtai
- About the Technical Editor
- Assoc. Prof. Ts. Dr. Nik Zulkarnaen Khidzir. He is a Certified MBOT Professional Technologist.
- Associate Professor, Faculty of Creative Technology and Heritage. Currently is a Deputy Director of University Malaysia Kelantan (UMK) International. He is also a member of Technology Advisory Board for Bayarcash, digital financial merchant payment gateway online solution owned by Web Impian Sdn Bhd. In his spare time, he moderates the book "Information Security Risk Management Framework for Social Eng
- The Author Dedicated this book to the Poet and Lyricist
- Sheikh Rana
- Preface
- In today's digital age, where information preservation is the cornerstone for security and communication, safeguarding this invaluable asset has never been more critical. This book is designed to serve as a dedicated framework for prevention techniques and to navigate the complex and ever evolving landscape of digital data protection from social engineering attacks. It is imperative to recognize the profound significance of role as an information security risk management framework. Every bit and
- This is not only a book on information security and risk management, but a comprehensive compendium meticulously crafted to empower individuals and organizations with the knowledge, tools, and strategies necessary to defend against a multitude of cyber threats. Throughout these pages, the author embarks on multifaceted exploration, beginning with a deep dive into the very essence of digital data protection from social engineering attacks. From understanding the diverse types and classifications
- Your comprehensive academic guide to digital data protection awaits.
- Contents
- Preface xi
- Chapter OneFoundations of Information Security risk management:Understanding of social engineering attacks 1
- 1.1. Overview of Information Security risk management 1
- 1.2. Aims and Objectives 4
- 1.3. Significance of the work 5
- 1.4. Novelty of the work 6.
- 1.5. Contribution to the society 7
- Chapter Two"Navigating the Digital Terrain:Understanding Data, Risks, and Regulations" 15
- 2.1. Definition of digital data Types of digital data(personal, sensitive, corporate, etc.) 15
- 2.2. Fundamentals of Digital Evidence 20
- 2.3. SoE Attacking Risks 23
- 2.4. Fundamental Risk Management Concepts 31
- 2.5. Risk Management for the Prevention Technique of SoE Attacks 33
- 2.6. Risk Management Methodologies andApproaches for the Prevention Technique of SoE Attacks 34
- 2.7. Information security framework for the preventiontechnique of SoE attacks, Standards and Guidelines 36
- 2.8. Expert Judgment Method: Definition of elicitations objectives 41
- Chapter ThreeFramework Methodology: Processing Data and Threat Landscapes 45
- 3.1. Overview of framework methodology 45
- 3.2. Theoretical study 49
- 3.3. SoE attack risks of threats and vulnerability effects on digital evidence 50
- 3.4. Questionnaire Design 53
- 3.5. Pilot Study Results Summary 55
- 3.6. Empirical Study 58
- 3.7. Conceptual Framework 60
- 3.8. Exploratory Study 64
- 3.9. Framework Development 66
- Chapter FourFramework Alongside the Risk Management: "analyze SoE attack risks" 71
- 4.1. Data Analysis Strategies 71
- 4.2. Descriptive analysis 72
- 4.3. Reflective Measurement Analysis for the Study Model 78
- 4.4. Significance and relevance of the formative indicator for the model 82
- 4.5. Moderator variable for the Model 103
- Chapter FiveFortifying the Fortress: Strategies for Risk Management Framework 119
- 5.1. Overview of Risk Management Framework 119
- 5.2. The Framework Stages, Processes, Activities and Worksheets 127
- 5.3. Conduct necessary training or workshops 130
- Chapter SixBuilding a Culture of Security: Framework Confirmatory 139
- 6.1. Overview of Framework Verified 139.
- 6.2. Results and discussion of the framework of the confirmatory study 141
- 6.3. Expert Judgment Results: Setting the Scope of the SoE attack risks: 146
- 6.4. Supplementary Findings: Organizational risk of SoE attacks 160
- References 163
- Appendix 173
- List of Tables
- Table 1.1: Objectives, questions and analysis 5
- Table 1.2: Exploratory study phase: study approach 10
- Table 1.3: Framework development phase: Study approach 11
- Table 1.4: Confirmatory study phase: Study approach 11
- Table 2.1: The risk category descriptions and examples are shown 17
- Table 2.2: SoE Attacking Risks 19
- Table 2.3: Digital evidence in the organization 22
- Table 2.4: Literature review of the risk of SoE attacking threat items 24
- Table 2.5: Literature review of the risk of SoE attacking vulnerabilities 25
- Table 2.6: Literature on the risk of managingdefeats attacking the SoE in organizations 26
- Table 2.7: Literature on the risk of unexpectedchange in management resulting from SoE attacks 27
- Table 2.8: Literature on the risk of managingdefeats attacking the SoE in organizations 28
- Table 2.9: SoE attack risks based on the confidentiality,integrity and availability (CIA) concept. 29
- Table 2.10: shows common SoE attack risks during organizational activities. 31
- Table 2.11: summarization of the organizations 32
- Table 2.12: Information Security Risk ManagementConcepts, Methodologies and Approaches 35
- Table 2.13: Information Security Management Standards and Guidelines. 37
- Table 2.14: highlights the basic concepts of riskmanagement for preventing SoE attacks. 40
- Table 2.15: Characteristics of the experts involved in the confirmatory study 42
- Table 3.1: Study activities and objectives. 46
- Table 3.2: Theoretical Study Phase: Study Approach. 49.
- Table 3.3: Reliability test of the risk factors associatedwith SoE attacks (pilot study) 57
- Table 3.4: RMs for preventing SoE attacksin the organizations according to the constructed reliability test. 57
- Table 3.5: Organizational activity reliability test. 58
- Table 3.6: The empirical phase research approach 58
- Table 3.7: Illustrates the empirical roadmap and analysis techniqueused to answer the research questions and realize the research objectives. 59
- Table 3.8: Detailed explanations of the input,research approach and output in the exploratory study phase 65
- Table 3.9: Framework development phase: Research approach 66
- Table 3.10: Confirmatory phase study approach. 67
- Table 4.1: shows the results. 72
- Table 4.2: SoE attack risk ranking of threats 74
- Table 4.3: SoE attack risk ranking of vulnerabilities 75
- Table 4.4: SoE attack risk ranking of management defects in the organization 76
- Table 4.5: Ranking of unexpected changesin management risk due to SoE attacks 77
- Table 4.6: SoE attack risk ranking of digital evidence 78
- Table 4.7: Reflective measurement for the model 79
- Table 4.8: The bias -corrected confidence intervals 82
- Table 4.9: Collinearity statistics (VIF): 84
- Table 4.10: R2 values 85
- Table 4.11: shows the path coefficients with t values and p values. 86
- Table 4.12: Confidence intervals 87
- Table 4.13: Results of hypothesis testing 89
- Table 4.14: shows the specific indirect effects. 90
- Table 4.15: Direct effect values. 94
- Table 4.16: Confidence interval bias corrected 95
- Table 4.17: The direct and indirect effects of SoE attacks and prevention techniques on digital evidence based solutions. 97
- Table 4.18: Moderating effect values 103
- Table 4.19: Content analysis for the socialengineering attack risk identification phase 107.
- Table 4.20: Content analysis for the socialengineering attack risk analysis phase. 112.
- Notes:
- Description based on publisher supplied metadata and other sources.
- Part of the metadata in this record was created by AI, based on the text of the resource.
- Description based on print version record.
- Includes bibliographical references.
- ISBN:
- 9781680534245
- 1680534246
The Penn Libraries is committed to describing library materials using current, accurate, and responsible language. If you discover outdated or inaccurate language, please fill out this feedback form to report it and suggest alternative language.