2017 | OriginalPaper | Buchkapitel
An Integrated Strategy for Information Security: Outsourcing and In-house
verfasst von : Nan FENG, Bin CHEN
Erschienen in: Proceedings of the 23rd International Conference on Industrial Engineering and Engineering Management 2016
Verlag: Atlantis Press
Aktivieren Sie unsere intelligente Suche, um passende Fachinhalte oder Patente zu finden.
Wählen Sie Textabschnitte aus um mit Künstlicher Intelligenz passenden Patente zu finden. powered by
Markieren Sie Textabschnitte, um KI-gestützt weitere passende Inhalte zu finden. powered by
This paper examines a mixture of in-house efforts and fee-for-service outsourcing for firms to develop security protection. Due to the different degree of outsourcing, firms divide their information assets into two parts: one part is outsourced and the other part will be protected themselves. For the outsourced part, the optimal contract built by the firm and the MSSP, shows that the MSSP should bear full compensation when the firm was attacked by hacker successfully. Moreover, the unit price the firm should pay to the MSSP will decrease as the degree of outsourcing increases, which means that firms prefer to choose outsourcing because of MSSP’s cost advantage. However, the degree of outsourcing does not have an impact on the remaining part, which is not outsourced.