1. An information-centric approach to data security in organizations;Ahmad,2005
2. Managing information security risks;Alberts,2004
3. Organisational learning: a theory of action perspective;Argyris,1978
4. The case research strategy in studies of information systems;Benbasat;MIS Quarterly,1987
5. Learning from incidents involving E/E/PE systems: part 1 – review of methods and industry practice;Bishop,2003