{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2024,9,11]],"date-time":"2024-09-11T05:23:03Z","timestamp":1726032183143},"publisher-location":"Singapore","reference-count":27,"publisher":"Springer Singapore","isbn-type":[{"type":"print","value":"9789811391545"},{"type":"electronic","value":"9789811391552"}],"license":[{"start":{"date-parts":[[2019,6,14]],"date-time":"2019-06-14T00:00:00Z","timestamp":1560470400000},"content-version":"tdm","delay-in-days":0,"URL":"http:\/\/www.springer.com\/tdm"}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2020]]},"DOI":"10.1007\/978-981-13-9155-2_40","type":"book-chapter","created":{"date-parts":[[2019,6,13]],"date-time":"2019-06-13T02:03:04Z","timestamp":1560391384000},"page":"507-519","update-policy":"http:\/\/dx.doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":3,"title":["Metrics and Indicators of Information Security Incident Management: A Systematic Mapping Study"],"prefix":"10.1007","author":[{"given":"Alyssa","family":"Cadena","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Franklin","family":"Gualoto","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Walter","family":"Fuertes","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Luis","family":"Tello-Oquendo","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Roberto","family":"Andrade","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Freddy","family":"Tapia","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Jenny","family":"Torres","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","published-online":{"date-parts":[[2019,6,14]]},"reference":[{"key":"40_CR1","doi-asserted-by":"crossref","unstructured":"Miloslavskaya, N.: Security operations centers for information security incident management. In: 2016 IEEE 4th International Conference on Future Internet of Things and Cloud (FiCloud), pp. 131\u2013136 (2016)","DOI":"10.1109\/FiCloud.2016.26"},{"key":"40_CR2","doi-asserted-by":"crossref","unstructured":"Bernsmed, K., Tondel, I.A.: Forewarned is forearmed: indicators for evaluating information security incident management. In: 2013 IEEE Seventh International Conference on IT Security Incident Management and IT Forensics, pp. 3\u201314 (2013)","DOI":"10.1109\/IMF.2013.14"},{"key":"40_CR3","unstructured":"Hajdarevic, K., Allen, P.: A new method for the identification of proactive information security management system metrics. In: 2013 IEEE 36th International Convention on Information & Communication Technology Electronics & Microelectronics (MIPRO), pp. 1121\u20131126. (2013)"},{"key":"40_CR4","unstructured":"Thomson, W., Kelvin, L.: Baltimore Lectures. CJC a. Sons, Ed., London (1904)"},{"key":"40_CR5","doi-asserted-by":"publisher","first-page":"1","DOI":"10.1016\/j.infsof.2015.03.007","volume":"64","author":"K Petersen","year":"2015","unstructured":"Petersen, K., Vakkalanka, S., Kuzniarz, L.: Guidelines for conducting systematic mapping studies in software engineering: an update. Inf. Softw. Technol. 64, 1\u201318 (2015)","journal-title":"Inf. Softw. Technol."},{"issue":"1","key":"40_CR6","doi-asserted-by":"publisher","first-page":"1","DOI":"10.1016\/j.infsof.2011.06.003","volume":"54","author":"Frank Elberzhager","year":"2012","unstructured":"Elberzhager, F., M\u00fcnch, J., Nha, V.T.N.: A systematic mapping study on the combination of static and dynamic quality assurance techniques. Inf. Softw. Technol. 54(1), 1\u201315 (2012)","journal-title":"Information and Software Technology"},{"key":"40_CR7","doi-asserted-by":"crossref","unstructured":"Miani, R.S., Zarpelao, B.B., Sobesto, B., Cukier, M.: A practical experience on evaluating intrusion prevention system event data as indicators of security issues. In: 2015 IEEE 34th Symposium on Reliable Distributed Systems (SRDS), pp. 296\u2013305 (2015)","DOI":"10.1109\/SRDS.2015.17"},{"issue":"1","key":"40_CR8","doi-asserted-by":"publisher","first-page":"16","DOI":"10.1186\/s13174-018-0087-2","volume":"9","author":"R Boutaba","year":"2018","unstructured":"Boutaba, R., Salahuddin, M.A., Limam, N., Ayoubi, S., Shahriar, N., Estrada-Solano, F., Caicedo, O.M.: A comprehensive survey on machine learning for networking: evolution, applications and research opportunities. J. Internet Serv. Appl. 9(1), 16 (2018)","journal-title":"J. Internet Serv. Appl."},{"issue":"1","key":"40_CR9","doi-asserted-by":"publisher","first-page":"11","DOI":"10.1186\/1869-0238-4-11","volume":"4","author":"C Senk","year":"2013","unstructured":"Senk, C.: Adoption of security as a service. J. Internet Serv. Appl. 4(1), 11 (2013)","journal-title":"J. Internet Serv. Appl."},{"key":"40_CR10","doi-asserted-by":"crossref","unstructured":"Takamura, E., Mangum, K., Wasiak, F., Gomez-Rosa, C.: Information security considerations for protecting NASA mission operations centers (mocs). In: 2015 IEEE Aerospace Conference, pp. 1\u201314 (2015)","DOI":"10.1109\/AERO.2015.7119207"},{"key":"40_CR11","doi-asserted-by":"crossref","unstructured":"Skopik, F., Wurzenberger, M., Settanni, G., Fiedler, R.: Establishing national cyber situational awareness through incident information clustering. In: 2015 IEEE International Conference on Cyber Situational Awareness, Data Analytics and Assessment (CyberSA), pp. 1\u20138 (2015)","DOI":"10.1109\/CyberSA.2015.7166126"},{"key":"40_CR12","doi-asserted-by":"crossref","unstructured":"Zieger, A., Freiling, F., Kossakowski, K.P.: The \u03b2-time-to-compromise metric for practical cyber security risk estimation. In: 2018 IEEE 11th International Conference on IT Security Incident Management & IT Forensics (IMF). pp. 115\u2013133 (2018)","DOI":"10.1109\/IMF.2018.00017"},{"key":"40_CR13","doi-asserted-by":"crossref","unstructured":"Bustamante, F., Fuertes, W., D\u00edaz, P., Toulkeridis, T.: Integration of IT frameworks for the management of information security within industrial control systems providing metrics and indicators. In: 2017 IEEE XXIV International Conference on Electronics, Electrical Engineering and Computing (INTERCON), pp. 1\u20134 (2017)","DOI":"10.1109\/INTERCON.2017.8079672"},{"key":"40_CR14","unstructured":"Munro, J.K.: Application of security metrics to instrument systems that use distributed processing. In: Future of Instrumentation International Workshop (FIIW), 2011, pp. 5\u20138 (2011)"},{"issue":"82","key":"40_CR15","first-page":"16","volume":"800","author":"K Stouffer","year":"2011","unstructured":"Stouffer, K., Falco, J., Scarfone, K.: Guide to industrial control systems (ICS) security. NIST Spec. Publ. 800(82), 16 (2011)","journal-title":"NIST Spec. Publ."},{"issue":"3","key":"40_CR16","doi-asserted-by":"publisher","first-page":"e1","DOI":"10.1002\/pmj.21345","volume":"44","author":"Kenneth H. Rose","year":"2013","unstructured":"Rose, K.H.: A guide to the Project Management Body of Knowledge (PMBOK\u00ae Guide)\u2014Fifth Edition. Proj. Manag. J. 44(3), e1\u2013e1 (2013)","journal-title":"Project Management Journal"},{"key":"40_CR17","unstructured":"Lloyd, V.: ITIL Continual Service Improvement (Best Management Practices). The Stationery Office (2011)"},{"key":"40_CR18","unstructured":"ISACA: COBIT 5: A business framework for the governance and management of enterprise IT. ISACA (2012)"},{"key":"40_CR19","doi-asserted-by":"crossref","unstructured":"McQueen, M.A., Boyer, W.F., Flynn, M.A., Beitel, G.A.: Time-to-compromise model for cyber risk reduction estimation. In: Quality of Protection, pp. 49\u201364. Springer (2006)","DOI":"10.1007\/978-0-387-36584-8_5"},{"key":"40_CR20","unstructured":"\u00d8ien, K., Massaiu, S., Tinmannsvik, R.K.: Guideline for implementing the REWI method; Resilience based Early Warning Indicators. SINTEF report A 22026 (2012)"},{"key":"40_CR21","unstructured":"Information Technology\u2014Security Techniques\u2014Information Security Incident Management. Standard, International Organization for Standardization, Geneva, CH (2011)"},{"issue":"61","key":"40_CR22","first-page":"1","volume":"800","author":"P Cichonski","year":"2012","unstructured":"Cichonski, P., Millar, T., Grance, T., Scarfone, K.: Computer security incident handling guide. NIST Spec. Publ. 800(61), 1\u2013147 (2012)","journal-title":"NIST Spec. Publ."},{"key":"40_CR23","unstructured":"ANSI\/ISA: Security for Industrial Automation and Control Systems Part 1: Terminology, Concepts & Models. Tech. rep., American National Standards Institute\/International Society of Automation (ANSI\/ISA) (2007)"},{"key":"40_CR24","unstructured":"ANSI\/ISA: Security for Industrial Automation and Control Systems: Establishing an Industrial Automation and Control Systems Security Program. Tech. rep., American National Standards Institute\/International Society of Automation (ANSI\/ISA) (2009)"},{"key":"40_CR25","unstructured":"ISO\/IEC: Information Technology\u2014Security Techniques\u2014Information Security Management\u2014Measurement (ISO\/IEC 27004: 2009). ISO\/IEC (2009)"},{"key":"40_CR26","doi-asserted-by":"crossref","unstructured":"Chew, E., Swanson, M., Stine, K., Bartol, N., Brown, A., Robinson, W.: NIST Special Publication 800\u201355 Revision 1. Performance Measurement Guide for Information Security, National Institute of Standards and Technology, US Department of Commerce. Computer Division, Gaithersburg, MD 20899, 8930 (2008)","DOI":"10.6028\/NIST.SP.800-55r1"},{"key":"40_CR27","unstructured":"Verdugo, R.P.: Estado de las tecnolog\u00edas de la informaci\u00f3n y la comunicaci\u00f3n en las universidades ecuatorianas. CEDIA (2017)"}],"container-title":["Smart Innovation, Systems and Technologies","Developments and Advances in Defense and Security"],"original-title":[],"language":"en","link":[{"URL":"http:\/\/link.springer.com\/content\/pdf\/10.1007\/978-981-13-9155-2_40","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2019,6,13]],"date-time":"2019-06-13T02:11:29Z","timestamp":1560391889000},"score":1,"resource":{"primary":{"URL":"http:\/\/link.springer.com\/10.1007\/978-981-13-9155-2_40"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2019,6,14]]},"ISBN":["9789811391545","9789811391552"],"references-count":27,"URL":"https:\/\/doi.org\/10.1007\/978-981-13-9155-2_40","relation":{},"ISSN":["2190-3018","2190-3026"],"issn-type":[{"type":"print","value":"2190-3018"},{"type":"electronic","value":"2190-3026"}],"subject":[],"published":{"date-parts":[[2019,6,14]]},"assertion":[{"value":"14 June 2019","order":1,"name":"first_online","label":"First Online","group":{"name":"ChapterHistory","label":"Chapter History"}}]}}