Digital Repository

A Network Infrastructure Security Posture Assessment Framework for SMEs

Show simple item record

dc.contributor.author Harankahawa, Neminda
dc.date.accessioned 2024-02-19T06:09:36Z
dc.date.available 2024-02-19T06:09:36Z
dc.date.issued 2023
dc.identifier.citation Harankahawa, Neminda (2023) A Network Infrastructure Security Posture Assessment Framework for SMEs. MSc. Dissertation, Informatics Institute of Technology en_US
dc.identifier.issn 20200684
dc.identifier.uri http://dlib.iit.ac.lk/xmlui/handle/123456789/1716
dc.description.abstract "The constantly evolving threat landscape has made it mandatory to implement security controls for any organization that relies on information technology for its operation. However, organizations could not assume by implementing a subset of these security controls that they would be secure against all information security threats. Hence, most enterprise and financial organizations utilize security posture assessment mechanisms to evaluate their network infrastructure. But when it comes to SME organizations, conducting security assessment becomes a great challenge because of the financial and knowledge constraints. As a result, SMEs just assume that the implemented security controls and solutions provide the intended security for their network infrastructure, which is an alarming practice from the perspective of information security. This study approach to address this problem by conducting a set of interviews with security responsible personnel of SME organizations in Sri Lanka. Further, the study will analyze the data gathered from interviews based on a qualitative approach by utilizing the thematic analysis method. The study selected this methodology to understand the perspective of subjects to address the problem accurately. As the final outcome, self-evaluation framework has been introduced by the study. This framework is designed with tools that are freely available and well-known for information security assessment. Further, the framework provides a holistic approach to evaluate the network infrastructure security posture of an SME organization by combining risk-based assessment and security testing-based assessments" en_US
dc.language.iso en en_US
dc.publisher IIT en_US
dc.subject SME Security Assessment en_US
dc.subject SME Security Posture Assessment en_US
dc.subject SME Security en_US
dc.title A Network Infrastructure Security Posture Assessment Framework for SMEs en_US
dc.type Thesis en_US


Files in this item

This item appears in the following Collection(s)

Show simple item record

Search


Advanced Search

Browse

My Account