Visually Supporting the Assessment of the Incident Management Process
Loading...
Date
2024
Authors
Journal Title
Journal ISSN
Volume Title
Publisher
The Eurographics Association
Abstract
Incident Management (IM) is the process to prevent, protect, and react to incidents affecting an organization and should be well-defined to be prepared in case of alerts. To this aim, security standards define guidelines to manage the incidents and the organizations should comply with them to properly set up a secure-by-design process. Assessing whether an organization is compliant or not with security standards requires a big effort as the main methodologies are based on manual analysis and leveraging automatic approaches to support human decisions is challenging. To facilitate this task, we design IMPAVID, a visual analytics solution to support the assessment of IM process compliance through process mining. The aim is to increase the level of awareness of the security assessor to support her in making informed decisions about actions to improve IM process compliance with regulatory and technical standards. We evaluate the proposed system through a usage scenario based on a publicly available dataset containing data from a real IM log of an IT company.
Description
CCS Concepts: Human-centered computing→Visual analytics; Visualization systems and tools; Security and privacy→Usability in security and privacy;
        @inproceedings{10.2312:eurova.20241116,
booktitle = {EuroVis Workshop on Visual Analytics (EuroVA)},
editor = {El-Assady, Mennatallah and Schulz, Hans-Jörg},
title = {{Visually Supporting the Assessment of the Incident Management Process}},
author = {Palma, Alessandro and Angelini, Marco},
year = {2024},
publisher = {The Eurographics Association},
ISBN = {978-3-03868-253-0},
DOI = {10.2312/eurova.20241116}
}
        
