dc.contributor.author | FOSSUM, THEODOR | |
dc.contributor.author | ANDERSEN, VALDEMAR | |
dc.date.accessioned | 2021-10-18T10:11:33Z | |
dc.date.available | 2021-10-18T10:11:33Z | |
dc.date.issued | 2021 | |
dc.identifier.citation | FOSSUM, T., ANDERSEN, V. (2021) Investigating Cloud Access Security Broker In A Healthcare Service : Creating A Cloud Access Security Broker (CASB) Discussion Frame-work For Evaluating Security in Cloud Healthcare Services (Master's thesis). University of Agder, Grimstad. | en_US |
dc.identifier.uri | https://hdl.handle.net/11250/2823634 | |
dc.description | Master's thesis in Cyber security (IKT523) | en_US |
dc.description.abstract | Covid-19 accentuated the importance of accessible services, causing a major increase in the adoption of cloud services for enterprises. Cloud computing is a new paradigm that promises significant benefits for organizations in healthcare services. However, cloud computing also transforms enterprise architectures and introduces new problems of information security. Decision-makers in a large healthcare service provider need to justify decisions on cloud adoption, but such a task is convoluted given the different views on cloud computing and the potential impact of cyberthreats on critical infrastructures. As a consequence, cloud security controls need to be selected and implemented to complement cloud services. Our research focuses on the decision-making process for selecting a Cloud Access Security Broker (CASB) in a large public healthcare ICT provider in Norway. This thesis applies Action Design Research (ADR) to design a decision support tool for cloud security control selection in healthcare organizations. The result is a framework for evaluating cloud security controls that facilitates the decision-making process by considering multiple aspects of enterprise security architectures. Participants in the decision-making process can achieve a common understanding of cloud security control and a tailored assessment of how the cloud will impact information security in the organization. We present the design process and apply the framework to the CASB selection problem. As a practical implication, our findings suggest that selecting a cloud security control in a healthcare service provider is an ill-structured or “wicked” problem that requires a unique problem-solving approach | en_US |
dc.language.iso | eng | en_US |
dc.publisher | University of Agder | en_US |
dc.rights | Attribution-NonCommercial-NoDerivatives 4.0 Internasjonal | * |
dc.rights.uri | http://creativecommons.org/licenses/by-nc-nd/4.0/deed.no | * |
dc.subject | IKT523 | en_US |
dc.title | Investigating Cloud Access Security Broker In A Healthcare Service : Creating A Cloud Access Security Broker (CASB) Discussion Frame-work For Evaluating Security in Cloud Healthcare Services | en_US |
dc.type | Master thesis | en_US |
dc.rights.holder | © 2021 THEODOR FOSSUM, VALDEMAR ANDERSEN | en_US |
dc.subject.nsi | VDP::Matematikk og Naturvitenskap: 400::Informasjons- og kommunikasjonsvitenskap: 420::Sikkerhet og sårbarhet: 424 | en_US |
dc.source.pagenumber | 107 | en_US |