Our qualitative research provides a comprehensive list of challenges to the practice of IT security within organizations, including the interplay between human, organizational, and technical factors. We validate and extend prior work through an integration of these challenges into a framework that organizations can use to identify their limitations with respect to IT security. Furthermore, we suggest research opportunities for the improvement of IT security technologies from a holistic point of view.
↧