ARC@ORU: Stage Modeling and Theorizing in Information Systems

ARC@ORU

Host: Fredrik Karlsson, Professor in Informatics
Unit / Research Area: Informatics
Speaker: Mikko Siponen is a Professor of Business Cybersecurity and a Professor of Management Information Systems at the University of Alabama.
Time: 10:15-12:00

Zoom link: https://oru-se.zoom.us/j/67686649447?pwd=7USpAD8oa5ZfwkZI3mQDlWQYYwev1U.1

Stage Modeling and theorizing in Information systems

Abstract

Information systems (IS) models are commonly divided into variance and process models, following Mohr. The so called ‘variance’ models are typically stage less, correlational models that express general tendencies across a population.

Such models have difficulty accounting for changes in explanations or predictors over time—for example, how the reasons behind users’ cybersecurity behavior evolve. Process models can be used to model such dynamics. However, process theorists normally require a sequence of events, explaining ‘why’ or ‘how’ something happened.

Stage modeling also offers dynamic modelling capabilities different from process models. Instead of a sequence of events, stage models capture development in terms of idealized stages. Each stage has stage specific characteristics. This allows stage identification: to situate activities or individuals at specific stages.

In applied sciences, such as health and moral psychology, stage identification is used to offer stage matching interventions. Similar ideas can be used in IS security interventions: users receive different interventions based on the stage they are located in. Taken as a whole, the stages typically provide ‘how possible’ explanations.

Overall, software development stages explain the possible ways software is developed. In addition, unlike process models, each stage allows stage specific theorizing and explanations limited to that stage. For example, each stage of a software development model can also explain how to conduct analysis, design, implementation, or testing. Finally, each stage can be further broken down into submodels. This allows improved explanatory or predictive accuracy, and it is not recognized in IS process models.

Bio

Mikko Siponen is a Professor of Business Cybersecurity and a Professor of Management Information Systems at the University of Alabama. He has a M.Sc. in Software Engineering, a Ph.D. in Information Systems, and a Ph.D. in Philosophy.

Siponen is consistently ranked among the top 30 scholars in Information Systems discipline (worldwide), based on manuscripts published in the leading Information Systems journals.

His research interests include cybersecurity management, cybercrime, IS development, computer ethics, IT use and philosophical aspects of IS. In terms of research and consultancy, Siponen is most well known in the area of cyber security management.

He has held managerial and leadership positions as Vice Head Department, Head of Department and Vice Dean for Research. He has worked in several countries as a visiting distinguished professor, honorary professor, visiting professor, invited speaker, and a consultant. He has been Primary Investigator for research projects funded by companies and different funding institutions. He is an invited member of the Finnish Academy of Science and Letters.