Kyberturvallisuuden johtaminen ja kehittäminen osana kriittisen infrastruktuurin organisaation toimintaa – Systeemiajattelu
| dc.contributor.author | Pöyhönen, Jouni | |
| dc.date.accessioned | 2020-08-14T15:16:20Z | |
| dc.date.available | 2020-08-14T15:16:20Z | |
| dc.date.issued | 2020 | |
| dc.identifier.isbn | 978-951-39-8258-4 | |
| dc.identifier.uri | https://jyx.jyu.fi/handle/123456789/71395 | |
| dc.description.abstract | The structure of the modern society is based on the cooperation of different parts of the critical infrastructure. Their mutual functional ability depends primarily on operationally reliable organizations that form systems, i.e. parts of the infrastructural whole. This doctoral dissertation focuses on developing cybersecurity leadership in enterprises and other organizations in the network of national critical infrastructure. The research emphasizes controlling the continuity of their functional processes in all operational environments. The dissertation presents different models of cybersecurity leadership and development for organizations. The focus is on proactiveness as well as creating trust, preserving reputation and managing the continuity of functional processes. The research method used was Soft Systems Methodology, SSM. While the people, processes and technologies of an organization present its capabilities, they also contain vulnerabilities. The most central research question of the dissertation concentrates on cybersecurity leadership procedures and a comprehensive system review of cybersecurity management in a national critical infrastructure organization. It means cybersecurity management on all levels of decision-making (strategic, operative and technical/tactical). Three practical measures for development are presented: first, embedding new technological solutions into the organization’s piers cyber security structure, second, drafting comprehensive cyber security risk assessments and third, preparing contingency plans in order to improve an organization’s resilience. In implementing the organizational cybersecurity development measures presented in the dissertation, the PDCA-method of process improvement can be applied. These organization-specific measures advance the protection of national critical infrastructure and thus also cyber self-sufficiency, comprehensive security, security of supply and both national and organization-specific competitive advantage. Keywords: cyber security, national critical infrastructure, system, organization, process, system, device | en |
| dc.format.mimetype | application/pdf | |
| dc.language.iso | fin | |
| dc.publisher | Jyväskylän yliopisto | |
| dc.relation.ispartofseries | JYU dissertations | |
| dc.relation.haspart | <b>Artikkeli I: </b>Pöyhönen, J., Lehto, M., 2017. Cyber security creation as part of the management of an energy company. <i>ECCWS 2017: Proceedings of the 16th European Conference on Cyber Warfare and Security (pp. 332-340). Published by Academic Conferences and Publishing International Limited. Reading. UK.</i> | |
| dc.relation.haspart | <b>Artikkeli II: </b>Pöyhönen, J., Nuojua, V., Lehto, M., Rajamäki, J., 2018. Application of Cyber Resilience Review to an Electricity Company. <i>ECCWS 2018: Proceedings of the 17th European Conference on Cyber Warfare and Security (pp. 380-389). Published by Academic Conferences and Publishing International Limited. Reading. UK.</i> <a href="http://urn.fi/URN:NBN:fi-fe2018090334420"target="_blank"> http://urn.fi/URN:NBN:fi-fe2018090334420</a> | |
| dc.relation.haspart | <b>Artikkeli III: </b> Pöyhönen, J., Kotilainen, P., Kalmari J., Poikolainen, J., Neittaanmäki, P,. 2019. Cyber security of vehicle CAN bus. <i>ECCWS 2019: Proceedings of the 18th European Conference on Cyber Warfare and Security (pp. 354-363). Published by Academic Conferences and Publishing International Limited. Reading. UK.</i> <a href="http://urn.fi/URN:NBN:fi:jyu-202001071036"target="_blank"> http://urn.fi/URN:NBN:fi:jyu-202001071036</a> | |
| dc.relation.haspart | <b>Artikkeli IV:</b> Pöyhönen, J., Nuojua, V., Lehto, M., Rajamäki, J., 2019. Cyber Situational Awareness and Information Sharing in Critical Infrastructure Organizations. <i>Digital Transformation, Cyber Security and Resilience. DIGILIENCE 2019. Volume 43, no. 2 (2019): 236-256.</i> <a href="http://urn.fi/URN:NBN:fi-fe2019112544255"target="_blank"> http://urn.fi/URN:NBN:fi-fe2019112544255</a> | |
| dc.relation.haspart | <b>Artikkeli V:</b> Pöyhönen, J., Nuojua, V., Lehto, M., Rajamäki, J., 2019. Cyber Situational Awareness in Critical Infrastructure Organizations. <i>Artikkeli on painoprosessissa.</i> | |
| dc.relation.haspart | <b>Artikkeli VI:</b> Pöyhönen, J., Lehto, M., 2020. Cyber security: Trust based architecture in the management of an organization security. <i>Originally published in the proceedings of the 18th European Conference on Cyber Warfare and Security ECCWS2020, 25-26 June 2020, University of Chester, UK, pages 304-313.</i> | |
| dc.relation.haspart | <b>Artikkeli VII:</b> Pöyhönen, J., Rajamäki, J., Ruoslahti, H., Lehto, M., 2020. Cyber Situational Awareness in Critical Infrastructure Protection. <i>Cyber Security of Critical Infrastructure 2020 (CYSEC2020) conference, October 27th, 2020 - October 28th, 2020. Dubrovnik. Croatia. Artikkeli hyväksytty 2.3.2020.</i> | |
| dc.rights | In Copyright | |
| dc.subject | kyberturvallisuus | |
| dc.subject | kansallinen turvallisuus | |
| dc.subject | huoltovarmuus | |
| dc.subject | infrastruktuurit | |
| dc.subject | johtaminen | |
| dc.subject | turvallisuusjohtaminen | |
| dc.subject | organisaatiot | |
| dc.subject | systeemiajattelu | |
| dc.subject | järjestelmäarkkitehtuuri | |
| dc.subject | kehittäminen | |
| dc.title | Kyberturvallisuuden johtaminen ja kehittäminen osana kriittisen infrastruktuurin organisaation toimintaa – Systeemiajattelu | |
| dc.type | Diss. | |
| dc.identifier.urn | URN:ISBN:978-951-39-8258-4 | |
| dc.relation.issn | 2489-9003 | |
| dc.rights.copyright | © The Author & University of Jyväskylä | |
| dc.rights.accesslevel | openAccess | |
| dc.type.publication | doctoralThesis | |
| dc.format.content | fulltext | |
| dc.rights.url | https://rightsstatements.org/page/InC/1.0/ | |
| dc.date.digitised |
Aineistoon kuuluvat tiedostot
Aineisto kuuluu seuraaviin kokoelmiin
-
JYU Dissertations [775]
-
Väitöskirjat [3431]
Ellei muuten mainita, aineiston lisenssi on In Copyright