AIS SIGSEC provides networking opportunities for people who conduct research, develop and/or teach about information security, assurance, digital forensics, privacy, and information system risk management and auditing. SIGSEC members discuss issues related to the theory, practice, methods, and applications of technologies to better understand and promote sound information security and privacy activities by individuals and organizations alike.

Track Co-Chairs:
Gregory Bott, The University of Alabama, greg.bott@ua.edu
Philip Menard, University of Texas at San Antonio, philip.menard@utsa.edu
Bryan Hammer, University of Montana, bryan.hammer@umt.edu
Clay Posey, Brigham Young University, clay.posey@byu.edu
Andrew William Green, Kennesaw State University, agreen57@kennesaw.edu

Schedule
2026
Saturday, August 15th
12:00 AM

A Context-Aware Cybersecurity Lens for Information Systems Research

Jonas Fegert, Karlsruhe Institute of Technology (KIT)

12:00 AM

A GOVERNANCE-ORIENTED FRAMEWORK FOR BALANCING EXPLAINABILITY AND PRIVACY IN AI-BASED DECISION SYSTEMS

Andressa Girotto Vargas, University of Brasília
Edna Dias Canedo, University of Brasília

12:00 AM

A Systems Dynamics Approach to Understand Threat Intelligence Sharing

Sander Zeijlemaker, Massachusetts Institute of Technology
Ranjan Pal, MIT
Michael Siegel, Massachusetts Institute of Technology

12:00 AM

AI Coping Backfire in Urgent Cybersecurity Governance Communication

Vipandeep Singh Rataul, Virginia Commonwealth University
Yasser Al Helaly, Nova Information Management School
Simran Dhillon, Virginia State University

12:00 AM

AI for Mitigating DDoS Threat in Smart Homes - A Systematic Review

Hajar Niroomand, Dakota State University
Omar El-Gayar, Dakota State University

12:00 AM

Benchmarking Privacy Compliance in EU Crypto-Asset Markets: A Quantitative Analysis of GDPR and MiCA Implementation

Francisco Jose Cordoba, University of Nicosia
Muhammad Irfan Khalid, University of Agder
Marinos Themistocleous, University of Nicosia

12:00 AM

Between Expertise and Vulnerability: The Visual Construction of IT Security Roles in Cybersecurity Governance

Guy Alain Sylvanus Kouyo, Université Laval
Rohit Nishant, Queen's University Belfast
Hager Khechine, Laval University

12:00 AM

Building Organizational Capabilities for PII Protection: A Dynamic Capabilities on Threat Taxonomies and Safeguard Portfolios

Paul Ackah Toffey, Louisiana State University

12:00 AM

Contribution-based Federated Learning in Cybersecurity

Dhruv Sharma, Guru Jambheshwar University of Science & Technology
Deepti Agrawal, California State Polytechnic University Pomona
Kulraj Singh, California State University Fullerton

12:00 AM

Cyberattack Risk Management Framework for Organisations: A Machine Learning Based Approach

Priyanka Srivastava, IIM Lucknow
Arunabha Mukhopadhyay, Indian Institute of Management Lucknow

12:00 AM

Cybersecurity Training via AI: Examining Employee Perceptions, Trust, and Readiness for AI-Enhanced Learning

Massi Ahmed, Toronto Metropolitan University
Xingwei Yang, Toronto Metropolitan University
Wendi Zhou, Toronto Metropolitan University
Mehdi Kargar, Ryerson University
Morteza Zihayat, Ted Rogers School of Information Technology Management

12:00 AM

Decentralizing Trust: Self-Sovereign Identity Implementation in India’s Civil Aviation Ecosystem

Anuj S.S Mishra, Indian Institute of Management Lucknow
Arunabha Mukhopadhyay, Indian Institute of Management Lucknow

12:00 AM

Detecting Cyberattacks at Conception: A Role-Intent View of Early Ideation Signals

Raghvendra Singh, State University of New York at Buffalo
Kevin Cleary, SUNY Buffalo
Sanjukta Das Smith, University at Buffalo, The State University of New York

12:00 AM

Disaggregating AI Disclosures: Domain Emphasis and Breach Risk

Soyoung Jun, University of Georgia

12:00 AM

Does attention matter? The role of cognitive load in human security behavior

Lakshika Vaishnav, University at Albany, SUNY
Sanjay Goel, University at Albany, SUNY

12:00 AM

Doxxing as a Cybersecurity Threat: A Systematic Review

Emmanuel Anti, University of Vaasa
Duong Dang, University of Vaasa
Tero Vartiainen, University of Vaasa

12:00 AM

Effects of Task Type and Organization Identification on Shadow AI Usage

Hsieh-Hong Huang, Nationatl Taitung University

12:00 AM

Evidence-Gated IoT Lifecycle Governance: A Stage-Gate Model with Learning Loops for Cyber Resilience

David Yates, Bentley University

12:00 AM

Examining the impact of remote work on ISSP compliance: The context of cognitive load and cyberslacking

Frederick Adrah, University of North Carolina at Greensboro
Arindam Ray, University of North Carolina Greensboro

12:00 AM

From Oversight to Resilience: How CISO Governance Design and Human Capital Shape Organizational Incident Response Capability

Biju Varghese, Rochester Institute of Technology
Quang "Neo" Bui, Rochester Institute of Technology

12:00 AM

From Presence to Protection: AI-Assisted VR Cybersecurity Training to Strengthen Information Security Behavior

Sheng-Pao Shih, National Cheng Kung University
Kuan-Che Huang, Department of Information Management, Tamkang University

12:00 AM

From Warning to Recovery: A Speech-Act Perspective on the dynamics of public communication in the context of hurricanes

Pranali Mandaokar, University of Wisconsin Eau-Claire

12:00 AM

Governance Framework for Ethical AI in Identity and Access Management

MANJUNATH PARAMASHIVAIAH, UKG Inc
Federico Pigni, Grenoble Ecole de Management

12:00 AM

Governing AI Threats Through Adversarial Threat Frameworks

Obi Ogbanufe, University of North Texas
Deepti Agrawal, California State Polytechnic University Pomona

12:00 AM

Integrating AI Governance and Blockchain Execution: A Secure Framework for Enterprise Incentive Systems

Divija Gadiraju, University of Nebraska at Omaha
Deepak Khazanchi, University of Nebraska at Omaha

12:00 AM

Interpreting Phishing Simulation: A Typology of Employee Behavioral Responses and Their Transformation Pathways

Ruilin Wang, UMass Lowell
Luvai F. Motiwalla, U MASS Lowell

12:00 AM

Is Transparency the Best Policy? The Financial Impact of Post-Breach Disclosure Tone and Strategy

Arindam Majumder, University of North Texas
Debalina Bera, University of North Carolina Greensboro
Dan J. Kim, University of North Texas

12:00 AM

Meta-Governance of Autonomous AI Agents: A Policy-as-Code Architecture for Real-Time GRC in Multi-Agent Systems

Himanshu Joshi, University of Texas at Austin (SSO)
Shivani Shukla, University of San Francisco
Sunita Kumari, University of Texas at Austin (SSO)
Manas Joshi, University of Toronto

12:00 AM

No Request, No Concern: How Perceived Information Request Drives Privacy Concerns in Service Technology Adoption

Jun He, University of Michigan-Dearborn

12:00 AM

Organizational and Socio-Technical Challenges in UAV Incidents: Evidence from a Practitioner Focus Group

George Grispos, University of Nebraska-Omaha
Joel Elson, University of Nebraska Omaha
Austin C. Doctor, UNO
Suat Cubukcu, Towson University

12:00 AM

Play-to-Earn Blockchain Games

Arthur Carvalho, Miami University
Chad Anderson, Miami University
Mala Kaul, University of Nevada, Reno

12:00 AM

Prevention or Recovery? Untangling the Effects of Top Management Team Governance on Cybersecurity Incidents

Xuecong Lu, University at Albany, SUNY
Prinkle Sharma, Information Security and Digital Forensics
Haoze Chen, St. Francis Xavier University
Junyi Yang, McMaster University

12:00 AM

Reflexive Ethnography of Digital Legitimacy: Promissory Governance in Decentralized Organizations

Xzavier Ozuna, University of North Texas
Gurpreet Dhillon, University of Nebraska Omaha
Joti Kaur, University of North Texas

12:00 AM

Resolving Information Asymmetry in Software Supply Chain Risk Assessment: An Organizational Sensemaking Perspective on Vulnerability Intelligence

Chukwuka Junior Akibor, University of Texas Rio Grande Valley

12:00 AM

Security Risks of Large Language Models: A Systematic Literature Review

Raul Diaz Parra, Esan

12:00 AM

Sociotechnical Dynamics of Deepfake Creation: An Activity Systems Analysis

Shuyuan Mary Ho, Florida State University
Rasleen Kaur, Florida State University
Subhasree Sengupta, Florida State University
Yue Liu, Florida State University
Jad Dargam, Florida State University

12:00 AM

Symbolic, Selective, or Substantive? Compliance Patterns in EdTech Privacy Policies

Mark Keith, Brigham Young Universify
Luke W. Corbett, Brigham Young University
Logan Spencer, Brigham Young University
Cale Lamb, Brigham Young University
Mekeli Hiller, Brigham Young University
Preston Russell Park, Brigham Young University
Asante Laryea-Akrong, Brigham Young University

12:00 AM

The Effect of AI Information Flow Acceptability on Creepiness and Receptivity of Recommendations

Marvin Adjei Kojo Lomo, UNC Greensboro
Rahul Singh, UNC Greensboro
Arindam Ray, University of North Carolina Greensboro

12:00 AM

The Impacts of Generative AI on Individual Ability to Detect AI-Generated Deceptions

Akanksha Shukla, Wipro Technologies
Thuan Nguyen, East Texas A&M University
Hannatu Danjuma, East Texas A&M University, Commerce
Gifty Coulon, East Texas A&M University, Commerce
Jennifer Olatunde-Thorpe, East Texas A&M University, Commerce
Taiye Moses Olorunfemi, East Texas A&M University, Commerce

12:00 AM

The Mirage of Safety: Unpacking the "AI Guard-Down Effect" on Cybersecurity Vigilance and Privacy Behaviors

Mohamed Abouzahra, California State University at Monterey Bay

12:00 AM

The Operationalization Gap: Auditing Provenance Transparency under the AI Act

Daniel Juan Sivizaca Conde, Freie Universität Berlin
David Rößler-von Saß, Department of Information Systems
Sergio Perez, Freie Universität Berlin
Natalia Kliewer, Freie Universität Berlin

12:00 AM

Uplift and Motivate – the Role of the Mesosystem for Small Businesses’ Cybersecurity

Elinor Tsen, University of Queensland
Ryan Ko, The University of Queensland

12:00 AM

When Anthropomorphic Realism Backfires: Surface vs. Interpretive Ambiguity in AI-mediated IT Support Requests

Zisu Kim, Temple University
John D'Arcy, University of Delaware
Detmar Straub, Temple University

12:00 AM

When complexity Becomes Exposure: Software Complexity, Hardware Structure, and Data Breaches

Arash Zarfsazi, Baruch College, City University of New York
Harsh Parekh, Baruch College, CUNY

12:00 AM

When Resilience Becomes Risk: How Cybersecurity Incidents Reshape Supply Chain Recovery Strategies

Xuecong Lu, SUNY, University at Albany
Junyi Yang, McMaster University
Chunming Shi, Wilfrid Laurier University
Jie Mi, Taiyuan University of Technology
Si Liu, Kent State University

12:00 AM