Mitigating Insider Threats in Cybersecurity: A Design Thinking Approach
| dc.contributor.author | Anti, Emmanuel | |
| dc.contributor.author | Rousi, Rousi | |
| dc.contributor.editor | Tatti, Nikolaj | |
| dc.contributor.editor | Kasurinen, Jussi | |
| dc.contributor.editor | Päivärinta, Tero | |
| dc.contributor.orcid | https://orcid.org/0009-0007-3802-4875 | |
| dc.contributor.orcid | https://orcid.org/0000-0001-5771-3528 | |
| dc.date.accessioned | 2026-03-30T10:03:00Z | |
| dc.date.issued | 2026 | |
| dc.description.abstract | Insider threats in cybersecurity (ITC) are increasing in frequency and impact, while current technical, psychological, and organizational approaches remain insufficient. These strategies often address narrow aspects, such as system vulnerabilities or individual behavior, without offering a holistic, multidisciplinary solution. This study presents DESTIC, a design thinking (DT) framework to study insider threats. Unlike existing research emphasizing only the "Empathize" phase, DESTIC engages all six DT stages: empathize, define, ideate, prototype, test, and implement to uncover root causes and develop targeted interventions. We apply organizational design workshops, a methodology that combines diverse stakeholders to co-create solutions by examining behavioral, technical, and organizational factors. This study offers a structured, human-centered approach to understanding and proactively preventing insider threats through iterative, collaborative cybersecurity innovation. | en |
| dc.description.notification | © 2025 Copyright for this paper by its authors. Use permitted under Creative Commons License Attribution 4.0 International (CC BY 4.0). | |
| dc.description.reviewstatus | fi=vertaisarvioitu|en=peerReviewed| | |
| dc.identifier.uri | https://osuva.uwasa.fi/handle/11111/20037 | |
| dc.identifier.urn | URN:NBN:fi-fe2026033024160 | |
| dc.language.iso | en | |
| dc.publisher | RWTH Aachen | |
| dc.relation.conference | Annual Doctoral Symposium of Computer Science | |
| dc.relation.funder | Suomen Akatemia | fi |
| dc.relation.funder | Academy of Finland | en |
| dc.relation.grantnumber | 348391 | |
| dc.relation.ispartof | Proceedings of the Annual Doctoral Symposium of Computer Science 2025 | |
| dc.relation.ispartofjournal | CEUR workshop proceedings | |
| dc.relation.issn | 1613-0073 | |
| dc.relation.url | https://ceur-ws.org/Vol-4181/paper11.pdf | |
| dc.relation.url | https://urn.fi/URN:NBN:fi-fe2026033024160 | |
| dc.relation.volume | 4181 | |
| dc.rights | https://creativecommons.org/licenses/by/4.0/ | |
| dc.source.identifier | 16ce89bc-6672-457e-9a9c-4f3ea7d48d85 | |
| dc.source.metadata | SoleCRIS | |
| dc.subject | Design thinking | |
| dc.subject | insider threats | |
| dc.subject | human-centered design | |
| dc.subject | cybersecurity | |
| dc.subject | framework | |
| dc.subject.discipline | fi=Viestintätieteet|en=Communication Studies| | |
| dc.subject.discipline | fi=Viestintätieteet|en=Communication Studies| | |
| dc.title | Mitigating Insider Threats in Cybersecurity: A Design Thinking Approach | |
| dc.type.okm | fi=A4 Vertaisarvioitu artikkeli konferenssijulkaisussa|en=A4 Article in conference proceedings (peer-reviewed)| | |
| dc.type.publication | article | |
| dc.type.version | publishedVersion |
Tiedostot
1 - 1 / 1