TY - JOUR AU - Schryen, Guido ID - 15414 IS - 9 JF - Communications of the ACM TI - Integrating Management Science into the HPC Research Ecosystem VL - 63 ER - TY - JOUR AB - This interview is part of the special issue (01/2020) on “High Performance Business Computing” to be published in the journal Business & Information Systems Engineering. The interviewee Utz-Uwe Haus is Senior Research Engineer @ CRAY European Research Lab (CERL)). A bio of him is included at the end of the interview. AU - Schryen, Guido AU - Kliewer, Natalia AU - Fink, Andreas ID - 15513 IS - 01/2020 JF - Business & Information Systems Engineering TI - Interview with Utz-Uwe Haus on “High Performance Computing in Economic Environments: Opportunities and Challenges" VL - 62 ER - TY - JOUR AU - Schryen, Guido ID - 15022 IS - 1 JF - European Journal of Operational Research TI - Parallel computational optimization in operations research: A new integrative framework, literature review and research directions VL - 287 ER - TY - JOUR AB - Timing plays a crucial role in the context of information security investments. We regard timing in two dimensions, namely the time of announcement in relation to the time of investment and the time of announcement in relation to the time of a fundamental security incident. The financial value of information security investments is assessed by examining the relationship between the investment announcements and their stock market reaction focusing on the two time dimensions. Using an event study methodology, we found that both dimensions influence the stock market return of the investing organization. Our results indicate that (1) after fundamental security incidents in a given industry, the stock price will react more positively to a firm’s announcement of actual information security investments than to announcements of the intention to invest; (2) the stock price will react more positively to a firm’s announcements of the intention to invest after the fundamental security incident compared to before; and (3) the stock price will react more positively to a firm’s announcements of actual information security investments after the fundamental security incident compared to before. Overall, the lowest abnormal return can be expected when the intention to invest is announced before a fundamental information security incident and the highest return when actual investing after a fundamental information security incident in the respective industry. AU - Szubartowicz, Eva AU - Schryen, Guido ID - 16249 IS - 1 JF - Journal of Information System Security KW - Event Study KW - Information Security KW - Investment Announcements KW - Stock Price Reaction KW - Value of Information Security Investments TI - Timing in Information Security: An Event Study on the Impact of Information Security Investment Announcements VL - 16 ER - TY - JOUR AB - Literature reviews (LRs) play an important role in the development of domain knowledge in all fields. Yet, we observe a lack of insights into the activities with which LRs actually develop knowledge. To address this important gap, we (1) derive knowledge building activities from the extant literature on LRs, (2) suggest a knowledge-based typology of LRs that complements existing typologies, and (3) apply the suggested typology in an empirical study that explores how LRs with different goals and methodologies have contributed to knowledge development. The analysis of 240 LRs published in 40 renowned IS journals between 2000 and 2014 allows us to draw a detailed picture of knowledge development achieved by one of the most important genres in the IS field. An overarching contribution of our work is to unify extant conceptualizations of LRs by clarifying and illustrating how LRs apply different methodologies in a range of knowledge building activities to achieve their goals with respect to theory. AU - Schryen, Guido AU - Wagner, Gerit AU - Benlian, Alexander AU - Paré, Guy ID - 11946 JF - Communications of the AIS KW - Literature review KW - knowledge development KW - knowledge building activities KW - knowledge-based typology KW - information systems research SN - 1529-3181 TI - A Knowledge Development Perspective on Literature Reviews: Validation of a New Typology in the IS Field VL - 46 ER - TY - JOUR AU - Schryen, Guido AU - Kliewer, Natalia AU - Fink, Andreas ID - 14985 IS - 1 JF - Business & Information Systems Engineering TI - High Performance Business Computing VL - 62 ER - TY - JOUR AB - Today, organizations must deal with a plethora of IT security threats and to ensure smooth and uninterrupted business operations, firms are challenged to predict the volume of IT security vulnerabilities and allocate resources for fixing them. This challenge requires decision makers to assess which system or software packages are prone to vulnerabilities, how many post-release vulnerabilities can be expected to occur during a certain period of time, and what impact exploits might have. Substantial research has been dedicated to techniques that analyze source code and detect security vulnerabilities. However, only limited research has focused on forecasting security vulnerabilities that are detected and reported after the release of software. To address this shortcoming, we apply established methodologies which are capable of forecasting events exhibiting specific time series characteristics of security vulnerabilities, i.e., rareness of occurrence, volatility, non-stationarity, and seasonality. Based on a dataset taken from the National Vulnerability Database (NVD), we use the Mean Absolute Error (MAE) and Root Mean Square Error (RMSE) to measure the forecasting accuracy of single, double, and triple exponential smoothing methodologies, Croston's methodology, ARIMA, and a neural network-based approach. We analyze the impact of the applied forecasting methodology on the prediction accuracy with regard to its robustness along the dimensions of the examined system and software package "operating systems", "browsers" and "office solutions" and the applied metrics. To the best of our knowledge, this study is the first to analyze the effect of forecasting methodologies and to apply metrics that are suitable in this context. Our results show that the optimal forecasting methodology depends on the software or system package, as some methodologies perform poorly in the context of IT security vulnerabilities, that absolute metrics can cover the actual prediction error precisely, and that the prediction accuracy is robust within the two applied forecasting-error metrics. AU - Yasasin, Emrah AU - Prester, Julian AU - Wagner, Gerit AU - Schryen, Guido ID - 13175 IS - January JF - Computers & Security SN - 0167-4048 TI - Forecasting IT Security Vulnerabilities - An Empirical Analysis VL - 88 ER - TY - JOUR AB - In disaster operations management, a challenging task for rescue organizations occurs when they have to assign and schedule their rescue units to emerging incidents under time pressure in order to reduce the overall resulting harm. Of particular importance in practical scenarios is the need to consider collaboration of rescue units. This task has hardly been addressed in the literature. We contribute to both modeling and solving this problem by (1) conceptualizing the situation as a type of scheduling problem, (2) modeling it as a binary linear minimization problem, (3) suggesting a branch-and-price algorithm, which can serve as both an exact and heuristic solution procedure, and (4) conducting computational experiments - including a sensitivity analysis of the effects of exogenous model parameters on execution times and objective value improvements over a heuristic suggested in the literature - for different practical disaster scenarios. The results of our computational experiments show that most problem instances of practically feasible size can be solved to optimality within ten minutes. Furthermore, even when our algorithm is terminated once the first feasible solution has been found, this solution is in almost all cases competitive to the optimal solution and substantially better than the solution obtained by the best known algorithm from the literature. This performance of our branch-and-price algorithm enables rescue organizations to apply our procedure in practice, even when the time for decision making is limited to a few minutes. By addressing a very general type of scheduling problem, our approach applies to various scheduling situations. AU - Rauchecker, Gerhard AU - Schryen, Guido ID - 5674 IS - 1 JF - European Journal of Operational Research KW - OR in disaster relief KW - disaster operations management KW - scheduling KW - branch-and-price TI - An Exact Branch-and-Price Algorithm for Scheduling Rescue Units during Disaster Response VL - 272 ER - TY - JOUR AB - Scheduling problems are essential for decision making in many academic disciplines, including operations management, computer science, and information systems. Since many scheduling problems are NP-hard in the strong sense, there is only limited research on exact algorithms and how their efficiency scales when implemented on parallel computing architectures. We address this gap by (1) adapting an exact branch-and-price algorithm to a parallel machine scheduling problem on unrelated machines with sequence- and machine-dependent setup times, (2) parallelizing the adapted algorithm by implementing a distributed-memory parallelization with a master/worker approach, and (3) conducting extensive computational experiments using up to 960 MPI processes on a modern high performance computing cluster. With our experiments, we show that the efficiency of our parallelization approach can lead to superlinear speedup but can vary substantially between instances. We further show that the wall time of serial execution can be substantially reduced through our parallelization, in some cases from 94 hours to less than six minutes when our algorithm is executed on 960 processes. AU - Rauchecker, Gerhard AU - Schryen, Guido ID - 6512 IS - 104 JF - Computers & Operations Research KW - parallel machine scheduling with setup times KW - parallel branch-and-price algorithm KW - high performance computing KW - master/worker parallelization TI - Using High Performance Computing for Unrelated Parallel Machine Scheduling with Sequence-Dependent Setup Times: Development and Computational Evaluation of a Parallel Branch-and-Price Algorithm ER - TY - CONF AB - Recommender Agents (RAs) facilitate consumers’ online purchase decisions for complex, multi-attribute products. As not all combinations of attribute levels can be obtained, users are forced into trade-offs. The exposure of trade-offs in a RA has been found to affect consumers’ perceptions. However, little is known about how different preference elicitation methods in RAs affect consumers by varying degrees of trade-off exposure. We propose a research model that investigates how different levels of trade-off exposure cognitively and affectively influence consumers’ satisfaction with RAs. We operationalize these levels in three different RA types and test our hypotheses in a laboratory experiment with 116 participants. Our results indicate that with increasing tradeoff exposure, perceived enjoyment and perceived control follow an inverted Ushaped relationship. Hence, RAs using preference elicitation methods with medium trade-off exposure yield highest consumer satisfaction. This contributes to the understanding of trade-offs in RAs and provides valuable implications to e-commerce practitioners. AU - Schuhbeck, Veronika AU - Siegfried, Nils AU - Dorner, Verena AU - Benlian, Alexander AU - Scholz, Michael AU - Schryen, Guido ID - 6514 KW - Recommender Agents KW - Preference Elicitation Method KW - Trade-off Exposure KW - Customer Satisfaction T2 - Proceedings of the 14. Internationale Tagung Wirtschaftsinformatik TI - Walking the Middle Path: How Medium Trade-off Exposure Leads to Higher Consumer Satisfaction in Recommender Agents ER - TY - CHAP AU - Kuhlemann, Stefan AU - Sellmann, Meinolf AU - Tierney, Kevin ID - 14890 SN - 0302-9743 T2 - Lecture Notes in Computer Science TI - Exploiting Counterfactuals for Scalable Stochastic Optimization ER - TY - JOUR AU - Schryen, Guido AU - Kliewer, Natalia AU - Borndörfer, Ralf AU - Koch, Thorsten ID - 14540 JF - OR News TI - High-Performance Business Computing – Parallel Algorithms and Implementations for Solving Problems in Operations Research and Data Analysis VL - 65 ER - TY - CONF AB - When responding to natural disasters, professional relief units are often supported by many volunteers which are not affiliated to humanitarian organizations. The effective coordination of these volunteers is crucial to leverage their capabilities and to avoid conflicts with professional relief units. In this paper, we empirically identify key requirements that professional relief units pose on this coordination. Based on these requirements, we suggest a decision model. We computationally solve a real-world instance of the model and empirically validate the computed solution in interviews with practitioners. Our results show that the suggested model allows for solving volunteer coordination tasks of realistic size near-optimally within short time, with the determined solution being well accepted by practitioners. We also describe in this article how the suggested decision support model is integrated in the volunteer coordination system which we develop in joint cooperation with a disaster management authority and a software development company. AU - Rauchecker, Gerhard AU - Schryen, Guido ID - 5675 KW - Coordination of spontaneous volunteers KW - volunteer coordination system KW - decision support KW - scheduling optimization model KW - linear programming T2 - Proceedings of the 15th International Conference on Information Systems for Crisis Response and Management TI - Decision Support for the Optimal Coordination of Spontaneous Volunteers in Disaster Relief ER - TY - CONF AU - Prester, Julian AU - Wagner, Gerit AU - Schryen, Guido ID - 5681 T2 - Proceedings of the 2018 International Conference on Information Systems (ICIS 2018) TI - Classifying the Ideational Impact of IS Review Articles: A Natural Language Processing Based Approach ER - TY - BOOK AU - Schillinger, Rolf AU - Schryen, Guido ID - 6164 SN - 978-3-88246-374-3 TI - Security in Highly Connected IT Systems – Results of the Bavarian Research Alliance FORSEC ER - TY - JOUR AB - The need to protect resources against attackers is reflected by huge information security investments of firms worldwide. In the presence of budget constraints and a diverse set of assets to protect, organizations have to decide in which IT security measures to invest, how to evaluate those investment decisions, and how to learn from past decisions to optimize future security investment actions. While the academic literature has provided valuable insights into these issues, there is a lack of empirical contributions. To address this lack, we conduct a theory-based exploratory multiple case study. Our case study reveals that (1) firms? investments in information security are largely driven by external environmental and industry-related factors, (2) firms do not implement standardized decision processes, (3) the security process is perceived to impact the business process in a disturbing way, (4) both the implementation of evaluation processes and the application of metrics are hardly existent and (5) learning activities mainly occur at an ad-hoc basis. AU - Weishäupl, Eva AU - Yasasin, Emrah AU - Schryen, Guido ID - 5586 JF - Computers & Security KW - Information Security Investments KW - Multiple Case Study KW - Organizations KW - Single Loop Learning KW - Double Loop Learning TI - Information Security Investments: An Exploratory Multiple Case Study on Decision-Making, Evaluation and Learning VL - 77 ER - TY - CONF AU - Schuster, Richard AU - Wagner, Gerit AU - Schryen, Guido ID - 5600 T2 - Proceedings of the 2018 International Conference on Information Systems (ICIS 2018) TI - Information Systems Design Science Research and Cumulative Knowledge Development: An Exploratory Study ER - TY - CHAP AU - Hallmann, Corinna AU - Burmeister, Sascha Christian AU - Wissing, Michaela AU - Suhl, Leena ID - 14856 SN - 1865-0929 T2 - Communications in Computer and Information Science TI - Heuristics and Simulation for Water Tank Optimization ER - TY - CHAP AU - Hallmann, Corinna AU - Kuhlemann, Stefan ID - 14861 SN - 0721-5924 T2 - Operations Research Proceedings TI - Model Generator for Water Distribution Systems ER - TY - CONF AB - We consider Max-min Share (MmS) fair allocations of indivisible chores (items with negative utilities). We show that allocation of chores and classical allocation of goods (items with positive utilities) have some fundamental connections but also differences which prevent a straightforward application of algorithms for goods in the chores setting and viceversa. We prove that an MmS allocation does not need to exist for chores and computing an MmS allocation - if it exists - is strongly NP-hard. In view of these non-existence and complexity results, we present a polynomial-time 2-approximation algorithm for MmS fairness for chores. We then introduce a new fairness concept called optimal MmS that represents the best possible allocation in terms of MmS that is guaranteed to exist. We use connections to parallel machine scheduling to give (1) a polynomial-time approximation scheme for computing an optimal MmS allocation when the number of agents is fixed and (2) an effective and efficient heuristic with an ex-post worst-case analysis. AU - Aziz, Haris AU - Rauchecker, Gerhard AU - Schryen, Guido AU - Walsh, Toby ID - 5692 IS - 1 T2 - Thirty-First AAAI Conference on Artificial Intelligence (AAAI-17) TI - Algorithms for Max-Min Share Fair Allocation of Indivisible Chores VL - 31 ER - TY - CONF AB - Design science is a fundamental research stream that contends its position in the information systems discipline. While ongoing debates address the relative importance of design science contributions in the information systems community, insights into the scientific impact of design science research (DSR) are missing and this lack of understanding arguably poses challenges to an informed discourse. To identify the most influential papers and those factors that explain their scientific impact, this paper presents an exploratory study of the scientific impact of DSR papers published in the AIS Senior Scholars' Basket of Journals. We uncover the current DSR landscape by taking stock of influential papers and theories and develop a model to explain the scientific impact of DSR papers. Our findings show that scientific impact is significantly explained by theorization and novelty. We discuss how the implications of our work can be projected on the overarching discourse on DSR. AU - Wagner, Gerit AU - Prester, Julian AU - Schryen, Guido ID - 5594 T2 - 38th International Conference on Information Systems TI - Exploring the Scientific Impact of Information Systems Design Science Research: A Scientometric Study ER - TY - JOUR AU - Schryen, Guido AU - Hristova, Diana ID - 5626 JF - Smart Data Radar (Deutsche Bank) TI - High-Performance Business Computing - Effizienzsteigerung durch Parallelisierung ER - TY - JOUR AB - Literature reviews (LRs) are recognized for their increasing impact in the information systems literature. Methodologists have drawn attention to the question of how we can leverage the value of LRs to preserve and generate knowledge. The panelists who participated in the discussion of ?Standalone Literature Reviews in IS Research: What Can Be Learnt from the Past and Other Fields?? at ICIS 2016 in Dublin acknowledged this significant issue and debated a) what the IS field can learn from other fields and where IS-specific challenges occur, b) how the IS field should move forward to foster the genre of LRs, and c) what best practices are to train doctoral IS students in publishing LRs. This article reports the key takeaways of this panel discussion. Guidance for IS scholars is provided on how to conduct LRs that contribute to the cumulative knowledge development within and across the IS field to best prepare the next generation of IS scholars. AU - Schryen, Guido AU - Benlian, Alexander AU - Rowe, Frantz AU - Shirley, Gregor AU - Larsen, Kai AU - Petter, Stacie AU - Par{\'e}, Guy AU - Wagner, Gerit AU - Haag, Steffi AU - Yasasin, Emrah ID - 5633 JF - Communications of the AIS KW - Literature Review KW - Review Methodology KW - Research Methodology KW - Doctoral Training SN - 1529-3181 TI - Literature Reviews in IS Research: What Can Be Learnt from the Past and Other Fields? VL - 40 ER - TY - JOUR AB - Multi-attribute value theory (MAVT)-based recommender systems have been proposed for dealing with issues of existing recommender systems, such as the cold-start problem and changing preferences. However, as we argue in this paper, existing MAVT-based methods for measuring attribute importance weights do not fit the shopping tasks for which recommender systems are typically used. These methods assume well-trained decision makers who are willing to invest time and cognitive effort, and who are familiar with the attributes describing the available alternatives and the ranges of these attribute levels. Yet, recommender systems are most often used by consumers who are usually not familiar with the available attributes and ranges and who wish to save time and effort. Against this background, we develop a new method, based on a product configuration process, which is tailored to the characteristics of these particular decision makers. We empirically compare our method to SWING, ranking-based conjoint analysis and TRADEOFF in a between-subjects laboratory experiment with 153 participants. Results indicate that our proposed method performs better than TRADEOFF and CONJOINT and at least as well as SWING in terms of recommendation accuracy, better than SWING and TRADEOFF and at least as well as CONJOINT in terms of cognitive load, and that participants were faster with our method than with any other method. We conclude that our method is a promising option to help support consumers' decision processes in e-commerce shopping tasks. AU - Scholz, Michael AU - Dorner, Verena AU - Schryen, Guido AU - Benlian, Alexander ID - 5671 IS - 1 JF - European Journal of Operational Research KW - E-Commerce KW - Recommender System KW - Attribute Weights KW - Configuration System KW - Decision Support TI - A configuration-based recommender system for supporting e-commerce decisions VL - 259 ER - TY - CHAP AU - Beckschäfer, Michaela AU - Malberg, Simon AU - Tierney, Kevin AU - Weskamp, Christoph ID - 14857 SN - 0302-9743 T2 - Lecture Notes in Computer Science TI - Simulating Storage Policies for an Automated Grid-Based Warehouse System ER - TY - JOUR AU - Rauchecker, Gerhard AU - Schryen, Guido ID - 5676 JF - Im Einsatz TI - Projekt KUBAS: Koordination ungebundener Vor-Ort-Helfer VL - 23 ER - TY - CONF AU - Wagner, Gerit AU - Prester, Julian AU - Roche, Maria AU - Benlian, Alexander AU - Schryen, Guido ID - 5595 T2 - International Conference on Information Systems TI - Factors Affecting the Scientific Impact of Literature Reviews: A Scientometric Study ER - TY - JOUR AB - CAPTCHAs are challenge-response tests that aim at preventing unwanted machines, including bots, from accessing web services while providing easy access for humans. Recent advances in artificial-intelligence based attacks show that the level of security provided by many state-of-the-art text-based CAPTCHAs is declining. At the same time, techniques for distorting and obscuring the text, which are used to maintain the level of security, make text-based CAPTCHAs diffcult to solve for humans, and thereby further degrade usability. The need for developing alternative types of CAPTCHAs which improve both, the current security and usability levels, has been emphasized by several researchers. With this study, we contribute to research through (1) the development of two new face recognition CAPTCHAs (Farett-Gender and Farett-Gender&Age), (2) the security analysis of both procedures, and (3) the provision of empirical evidence that one of the suggested CAPTCHAs (Farett-Gender) is similar to Google's reCAPTCHA and better than KCAPTCHA concerning effectiveness (error rates), superior to both regarding learnability and satisfaction but not effciency. AU - Schryen, Guido AU - Wagner, Gerit AU - Schlegel, Alexander ID - 5617 IS - July JF - Computers & Security KW - CAPTCHA KW - Usability KW - Facial features KW - Gender classiffcation KW - Age classification KW - Face recognition reverse Turing test TI - Development of two novel face-recognition CAPTCHAs: a security and usability study VL - 60 ER - TY - CONF AB - Many academic disciplines - including information systems, computer science, and operations management - face scheduling problems as important decision making tasks. Since many scheduling problems are NP-hard in the strong sense, there is a need for developing solution heuristics. For scheduling problems with setup times on unrelated parallel machines, there is limited research on solution methods and to the best of our knowledge, parallel computer architectures have not yet been taken advantage of. We address this gap by proposing and implementing a new solution heuristic and by testing different parallelization strategies. In our computational experiments, we show that our heuristic calculates near-optimal solutions even for large instances and that computing time can be reduced substantially by our parallelization approach. AU - Rauchecker, Gerhard AU - Schryen, Guido ID - 5678 KW - scheduling KW - decision support KW - heuristic KW - high performance computing KW - parallel algorithms T2 - Australasian Conference on Information Systems TI - High-Performance Computing for Scheduling Decision Support: A Parallel Depth-First Search Heuristic ER - TY - JOUR AB - Cloud computing promises the flexible delivery of computing services in a pay-as-you-go manner. It allows customers to easily scale their infrastructure and save on the overall cost of operation. However Cloud service offerings can only thrive if customers are satisfied with service performance. Allow-ing instantaneous access and flexible scaling while maintaining the service levels and offering competitive prices poses a significant challenge to Cloud Computing providers. Furthermore services will remain available in the long run only if this business generates a stable revenue stream. To address these challenges we introduce novel policy-based service admission control mod-els that aim at maximizing the revenue of Cloud providers while taking in-formational uncertainty regarding resource requirements into account. Our evaluation shows that policy-based approaches statistically significantly out-perform first come first serve approaches, which are still state of the art. Furthermore the results give insights in how and to what extent uncertainty has a negative impact on revenue. AU - Püschel, Tim AU - Schryen, Guido AU - Hristova, Diana AU - Neumann, Dirk ID - 5679 IS - 2 JF - European Journal of Operational Research KW - admission control KW - informational uncertainty KW - revenue management KW - cloud computing TI - Revenue Management for Cloud Computing Providers: Decision Models for Service Admission Control under Non-probabilistic Uncertainty VL - 244 ER - TY - CONF AU - Yasasin, Emrah AU - Schryen, Guido ID - 5541 T2 - 23rd European Conference on Information Systems (ECIS 2015) TI - Requirements for IT Security Metrics - An Argumentation Theory Based Approach ER - TY - CONF AB - The protection of information technology (IT) has become and is predicted to remain a key economic challenge for organizations. While research on IT security investment is fast growing, it lacks a theoretical basis for structuring research, explaining economic-technological phenomena and guide future research. We address this shortcoming by suggesting a new theoretical model emerging from a multi-theoretical perspective adopt-ing the Resource-Based View and the Organizational Learning Theory. The joint appli-cation of these theories allows to conceptualize in one theoretical model the organiza-tional learning effects that occur when the protection of organizational resources through IT security countermeasures develops over time. We use this model of IT security invest-ments to synthesize findings of a large body of literature and to derive research gaps. We also discuss managerial implications of (closing) these gaps by providing practical ex-amples. AU - Weishäupl, Eva AU - Yasasin, Emrah AU - Schryen, Guido ID - 5588 KW - Information Security KW - Investment KW - Literature review KW - Resource-based View KW - Organi-zational Learning Theory KW - Multi-theoretical Perspective T2 - International Conference on Information Systems TI - A Multi-Theoretical Literature Review on Information Security Investments using the Resource-Based View and the Organizational Learning Theory ER - TY - CONF AU - Weishäupl, Eva AU - Yasasin, Emrah AU - Schryen, Guido ID - 5589 T2 - 23rd European Conference on Information Systems (ECIS 2015) TI - IT Security Investments Through the Lens of the Resource-Based View: A new Theoretical Model and Literature Review ER - TY - CONF AB - Nowadays, providing employees with failure-free access to various systems, applications and services is a crucial factor for organizations? success as disturbances potentially inhibit smooth workflows and thereby harm productivity. However, it is a challenging task to assign access rights to employees? accounts within a satisfying time frame. In addition, the management of multiple accounts and identities can be very onerous and time consuming for the responsible administrator and therefore expensive for the organization. In order to meet these challenges, firms decide to invest in introducing an Identity and Access Management System (IAMS) that supports the organization by using policies to assign permissions to accounts, groups, and roles. In practice, since various versions of IAMSs exist, it is a challenging task to decide upon introduction of an IAMS. The following study proposes a first attempt of a decision support model for practitioners which considers four alternatives: Introduction of an IAMS with Role-based Access Control RBAC) or without and no introduction of IAMS again with or without RBAC. To underpin the practical applicability of the proposed model, we parametrize and operationalize it based on a real world use case using input from an expert interview. AU - Weishäupl, Eva AU - Kunz, Michael AU - Yasasin, Emrah AU - Wagner, Gerit AU - Prester, Julian AU - Schryen, Guido AU - Pernul, Günther ID - 5590 KW - Identity and Access Management KW - Economic Decision Making KW - Information Systems KW - Information Security Investment KW - Decision Theory T2 - 2nd International Workshop on Security in highly connected IT Systems (SHCIS?15) TI - Towards an Economic Approach to Identity and Access Management Systems Using Decision Theory ER - TY - JOUR AU - Schryen, Guido AU - Weishäupl, Eva ID - 5616 IS - 2 JF - Managementkompass TI - IT-Sicherheit: Ökonomisch Planen und Bewerten ER - TY - CONF AB - Literature reviews play an important role in the development of knowledge. Yet, we observe a lack of theoretical underpinning of and epistemological insights into how literature reviews can contribute to knowledge creation and have actually contributed in the IS discipline. To address these theoretical and empirical research gaps, we suggest a novel epistemological model of literature reviews. This model allows us to align different contributions of literature reviews with their underlying knowledge conversions - thereby building a bridge between the previously largely unconnected fields of literature reviews and epistemology. We evaluate the appropriateness of the model by conducting an empirical analysis of 173 IS literature reviews which were published in 39 pertinent IS journals between 2000 and 2014. Based on this analysis, we derive an epistemological taxonomy of IS literature reviews, which complements previously suggested typologies. AU - Schryen, Guido AU - Wagner, Gerit AU - Benlian, Alexander ID - 5618 KW - Literature review KW - Research methods/methodology KW - Theory of knowledge T2 - International Conference on Information Systems (ICIS) TI - Theory of Knowledge for Literature Reviews: An Epistemological Model, Taxonomy and Empirical Analysis of IS Literature ER - TY - JOUR AU - Schryen, Guido AU - Rauchecker, Gerhard AU - Comes, Martina ID - 5622 IS - 4 JF - Business & Information Systems Engineering (BISE) TI - Resource Planning in Disaster Response - Decision Support Models and Methodologies VL - 57 ER - TY - JOUR AU - Schryen, Guido ID - 5634 IS - Art 12 JF - Communications of the AIS TI - Writing qualitative IS literature reviews ? Guidelines for synthesis, interpretation and guidance of research VL - 37 ER - TY - CONF AU - Rauchecker, Gerhard AU - Yasasin, Emrah AU - Schryen, Guido ID - 5672 T2 - 11th International Conference on Trust, Privacy, and Security in Digital Business (TRUSTBUS) TI - A Decision Support System for IT Security Incident Management ER - TY - JOUR AU - Fink, Andreas AU - Kliewer, Natalia AU - Mattfeld, Dirk AU - Mönch, Lars AU - Rothlauf, Franz AU - Schryen, Guido AU - Suhl, Leena AU - Voß, Stefan ID - 5686 IS - 1 JF - Business & Information Systems Engineering (BISE) TI - Model-based Decision Support in Manufacturing and Service Networks VL - 6 ER - TY - JOUR AU - Fink, Andreas AU - Kliewer, Natalia AU - Mattfeld, Dirk AU - Mönch, Lars AU - Rothlauf, Franz AU - Schryen, Guido AU - Suhl, Lena AU - Voß, Stefan ID - 5687 IS - 1 JF - Wirtschaftsinformatik TI - Modellbasierte Entscheidungsunterstützung in Produktions- und Service-Netzwerken VL - 56 ER - TY - GEN AU - Schryen, Guido ID - 6197 TI - The Epistemological Impact of Literature Reviews in Information Systems Research ER - TY - CONF AU - Yasasin, Emrah AU - Rauchecker, Gerhard AU - Prester, Julian AU - Schryen, Guido ID - 5573 T2 - 1st Workshop on Security in highly connected IT systems (SHCIS 14) TI - A Fuzzy Security Investment Decision Support Model for Highly Distributed Systems ER - TY - JOUR AU - Wex, Felix AU - Schryen, Guido AU - Feuerriegel, Stefan AU - Neumann, Dirk ID - 5585 JF - European Journal of Operational Research TI - Emergency Response in Natural Disaster Management: Allocation and Scheduling of Rescue Units ER - TY - JOUR AB - Natural disasters, including earthquakes, Tsunamis, floods, hurricanes, and volcanic eruptions, have caused tremendous harm and continue to threaten millions of humans and various infrastructure capabilities each year. In their efforts to take countermeasures against the threats posed by future natural disasters, the United Nations formulated the ?Hyogo Framework for Action?, which aims at assessing and reducing risk. This framework and a global review of disaster reduction initiatives of the United Nations acknowledge the need for information systems research contributions in addressing major challenges of natural disaster management. In this paper, we provide a review of the literature with regard to how information systems research has addressed risk assessment and reduction in natural disaster management. Based on the review we identify research gaps that are centered around the need for acquiring general knowledge on how to design IS artifacts for risk assessment and reduction. In order to close these gaps in further research, we develop a research agenda that follows the IS design science paradigm. AU - Schryen, Guido AU - Wex, Felix ID - 5614 IS - 1 JF - International Journal of Information Systems for Crisis Response and Management (IJISCRAM) KW - Natural Disaster Management KW - Risk Reduction KW - Hyogo Framework KW - IS Design Science KW - Literature review TI - Risk Reduction in Natural Disaster Management Through Information Systems: A Literature review and an IS design science research agenda VL - 6 ER - TY - JOUR AU - Schryen, Guido AU - Hristova, Diana ID - 5627 IS - 1 JF - OR -Spectrum TI - Duality in fuzzy linear programming: A survey VL - 37 ER - TY - JOUR AU - Schryen, Guido ID - 5636 JF - Communications of the AIS TI - Writing qualitative IS literature reviews ? Guidelines for synthesis, interpretation and guidance of research ER - TY - JOUR AU - de Meer, Hermann AU - Diener, Michael AU - Herkenhöner, Ralph AU - Kucera, Markus AU - Niedermeier, Michael AU - Reisser, Andreas AU - Schryen, Guido AU - Vetter, Michael AU - Waas, Thomas AU - Yasasin, Emrah ID - 5682 IS - 3 JF - PIK - Praxis der Informationsverarbeitung und Kommunikation TI - Sicherheitsherausforderungen in hochverteilten Systemen VL - 36 ER - TY - JOUR AU - Wex, Felix AU - Schryen, Guido ID - 6166 IS - 28 JF - Blick in die Wissenschaft TI - Effektiver Einsatz von Rettungskräften bei Naturkatastrophen - Modelle und Verfahren zur Entscheidungsunterstützung ER - TY - JOUR AU - Wex, Felix AU - Schryen, Guido AU - Neumann, Dirk ID - 5575 IS - 4 JF - International Journal of Information Systems for Crisis Response and Management TI - Assignments of Collaborative Rescue Units during Emergency Response VL - 5 ER -