dc.contributor.author | Pöyhönen, Jouni | |
dc.date.accessioned | 2020-08-14T15:16:20Z | |
dc.date.available | 2020-08-14T15:16:20Z | |
dc.date.issued | 2020 | |
dc.identifier.isbn | 978-951-39-8258-4 | |
dc.identifier.uri | https://jyx.jyu.fi/handle/123456789/71395 | |
dc.description.abstract | The structure of the modern society is based on the cooperation of different parts
of the critical infrastructure. Their mutual functional ability depends primarily
on operationally reliable organizations that form systems, i.e. parts of the infrastructural
whole.
This doctoral dissertation focuses on developing cybersecurity leadership
in enterprises and other organizations in the network of national critical infrastructure.
The research emphasizes controlling the continuity of their functional
processes in all operational environments. The dissertation presents different
models of cybersecurity leadership and development for organizations. The focus
is on proactiveness as well as creating trust, preserving reputation and managing
the continuity of functional processes. The research method used was Soft
Systems Methodology, SSM.
While the people, processes and technologies of an organization present its
capabilities, they also contain vulnerabilities. The most central research question
of the dissertation concentrates on cybersecurity leadership procedures and a
comprehensive system review of cybersecurity management in a national critical
infrastructure organization. It means cybersecurity management on all levels of
decision-making (strategic, operative and technical/tactical). Three practical
measures for development are presented: first, embedding new technological solutions
into the organization’s piers cyber security structure, second, drafting
comprehensive cyber security risk assessments and third, preparing contingency
plans in order to improve an organization’s resilience.
In implementing the organizational cybersecurity development measures
presented in the dissertation, the PDCA-method of process improvement can be
applied. These organization-specific measures advance the protection of national
critical infrastructure and thus also cyber self-sufficiency, comprehensive security,
security of supply and both national and organization-specific competitive
advantage.
Keywords: cyber security, national critical infrastructure, system, organization,
process, system, device | en |
dc.format.mimetype | application/pdf | |
dc.language.iso | fin | |
dc.publisher | Jyväskylän yliopisto | |
dc.relation.ispartofseries | JYU dissertations | |
dc.relation.haspart | <b>Artikkeli I: </b>Pöyhönen, J., Lehto, M., 2017. Cyber security creation as part of the management
of an energy company. <i>ECCWS 2017: Proceedings of the 16th European Conference on Cyber Warfare and Security (pp. 332-340). Published by Academic Conferences and Publishing International Limited. Reading. UK.</i> | |
dc.relation.haspart | <b>Artikkeli II: </b>Pöyhönen, J., Nuojua, V., Lehto, M., Rajamäki, J., 2018. Application of
Cyber Resilience Review to an Electricity Company. <i>ECCWS 2018: Proceedings
of the 17th European Conference on Cyber Warfare and Security
(pp. 380-389). Published by Academic Conferences and Publishing International
Limited. Reading. UK.</i> <a href="http://urn.fi/URN:NBN:fi-fe2018090334420"target="_blank"> http://urn.fi/URN:NBN:fi-fe2018090334420</a> | |
dc.relation.haspart | <b>Artikkeli III: </b> Pöyhönen, J., Kotilainen, P., Kalmari J., Poikolainen, J., Neittaanmäki, P,.
2019. Cyber security of vehicle CAN bus. <i>ECCWS 2019: Proceedings of the 18th European Conference on Cyber Warfare and Security (pp. 354-363).
Published by Academic Conferences and Publishing International Limited.
Reading. UK.</i> <a href="http://urn.fi/URN:NBN:fi:jyu-202001071036"target="_blank"> http://urn.fi/URN:NBN:fi:jyu-202001071036</a> | |
dc.relation.haspart | <b>Artikkeli IV:</b> Pöyhönen, J., Nuojua, V., Lehto, M., Rajamäki, J., 2019. Cyber Situational
Awareness and Information Sharing in Critical Infrastructure Organizations.
<i>Digital Transformation, Cyber Security and Resilience. DIGILIENCE
2019. Volume 43, no. 2 (2019): 236-256.</i> <a href="http://urn.fi/URN:NBN:fi-fe2019112544255"target="_blank"> http://urn.fi/URN:NBN:fi-fe2019112544255</a> | |
dc.relation.haspart | <b>Artikkeli V:</b> Pöyhönen, J., Nuojua, V., Lehto, M., Rajamäki, J., 2019. Cyber Situational
Awareness in Critical Infrastructure Organizations. <i>Artikkeli on painoprosessissa.</i> | |
dc.relation.haspart | <b>Artikkeli VI:</b> Pöyhönen, J., Lehto, M., 2020. Cyber security: Trust based architecture in
the management of an organization security. <i>Originally published in the
proceedings of the 18th European Conference on Cyber Warfare and Security
ECCWS2020, 25-26 June 2020, University of Chester, UK, pages 304-313.</i> | |
dc.relation.haspart | <b>Artikkeli VII:</b> Pöyhönen, J., Rajamäki, J., Ruoslahti, H., Lehto, M., 2020. Cyber Situational
Awareness in Critical Infrastructure Protection. <i>Cyber Security of Critical Infrastructure 2020 (CYSEC2020) conference, October 27th, 2020 -
October 28th, 2020. Dubrovnik. Croatia. Artikkeli hyväksytty 2.3.2020.</i> | |
dc.rights | In Copyright | |
dc.subject | kyberturvallisuus | |
dc.subject | kansallinen turvallisuus | |
dc.subject | huoltovarmuus | |
dc.subject | infrastruktuurit | |
dc.subject | johtaminen | |
dc.subject | turvallisuusjohtaminen | |
dc.subject | organisaatiot | |
dc.subject | systeemiajattelu | |
dc.subject | järjestelmäarkkitehtuuri | |
dc.subject | kehittäminen | |
dc.title | Kyberturvallisuuden johtaminen ja kehittäminen osana kriittisen infrastruktuurin organisaation toimintaa – Systeemiajattelu | |
dc.type | Diss. | |
dc.identifier.urn | URN:ISBN:978-951-39-8258-4 | |
dc.relation.issn | 2489-9003 | |
dc.rights.copyright | © The Author & University of Jyväskylä | |
dc.rights.accesslevel | openAccess | |
dc.type.publication | doctoralThesis | |
dc.format.content | fulltext | |
dc.rights.url | https://rightsstatements.org/page/InC/1.0/ | |
dc.date.digitised | | |