The Third International Workshop on Organizational Security Aspects

To be held in conjunction with the Sixth International Conference on Availability, Reliability and Security (ARES 2011 – http://www.ares-conference.eu).

August 22nd – 26th, 2011 Vienna University of Technology Vienna, Austria

In today's global economy, where conditions change often and rapidly, the efficiency and effectiveness of the execution of business processes has become a central issue. As these processes depend on the assigned resources, a considerable optimization focus lies on the minimization of the resources' costs and simultaneously on the maximization of their returns. Another critical factor, which substantially influences the ability to compete, is the continuous operation of a company's business processes. The reasons why the execution of business processes may be interrupted are manifold and are addressed by several fields of research. Exercising for instance strong computer security is a company’s crucial task in order to strengthen the resilience of IT systems against arising threats. However, the most sophisticated technical security techniques will fail, if there is no adequate organizational structure covering the appropriate planning, design and implementation of these techniques. Furthermore, processes within the companies have to be set up, lived and monitored to continuously improve the company’s ability to survive while simultaneously maximizing its returns.

The main objectives of this workshop are to bring together users and researchers (from industry and academy) to present their recent work, discuss and identify problems, synergize different views on methods and techniques, and brainstorm future research directions on various aspects of organizational security issues.

Topics of interest comprise but are not limited to:

Auditing Business Continuity Cost/Benefit Analysis Disaster Recovery Identity Management Information Assurance Information Security Management Insider Threats IT Governance IT Service Continuity Risk Management Security Awareness Security Culture Security Requirements Engineering Standards, Guidelines, Best Practices and Certification

Important dates Submission Deadline April 24th, 2011 Author Notification May 09th, 2011 Author Registration June 01st, 2011 Proceedings Version June 01st, 2011 Conference/Workshop August 22nd - 26th, 2011

Submission Guidelines The submission guidelines valid for the OSA workshop are the same as for the ARES conference. They can be found at:

http://www.ares-conference.eu/submission-guidelines