Curriculum Vitae of Prof Hennie Kruger 1. General information Title, name and surname: Prof Hennie Kruger Date of birth: 1955/12/18 Citizenship: RSA Professional registrations: ORSSA, SASA 2. Contact details Organisation where based: Faculty or School: North-West University (NWU) Work telephone number: +27 (0)18 299 2539 Work fax number: +27 (0)18 299 2570 Cell phone number: +27 (0)82 470 1022 E-mail address: Website address: Work postal address: Private Bag X6001, Potchefstroom South Africa, 2520 Work physical address: School of Computer Statistical and Mathematical Sciences Hennie.Kruger@nwu.ac.za http://www.nwu.ac.za North-West University (NWU) Potchefstroom Campus Potchefstroom 2520 3. Qualifications Qualification type: MSc Mathematical Statistics University of the Orange Free State Year obtained: 1999 Qualification type: PhD Information Systems North-West University (PU for CHE) Year obtained: 1994 Qualification type: MCom Information Systems University of the Orange Free State Year obtained: 1989 4. Employment history Position: Organisation Appointed from to: Associate Professor Potchefstroom Campus of the North-West University (NWU) 1999 - Current
5. Research expertise Scientific domain: Main research field: Fields of specialisation: NRF rating and year rated: Natural Sciences Operational Research, ICT Security Linear Programming, Decision support C3-2010 6. Publications International publications: Kruger, H.A. & Kearney, W. D. 2006. A prototype for assessing information security awareness. Computers and Security, 25(4), June 2006. p289-296. Drevin, L., Kruger, H.A. & Steyn, T. 2007. Valuefocused assessment of ICT security awareness in an academic environment. Computers and Security, 26(1), February 2007. p36-43. Kruger, H.A. & Kearney, W.D. 2008. Consensus ranking an ICT security awareness case study. Computers and Security, 27(7-8), December 2008. p254-259. Kruger, H.A., Steyn, T., Medlin, B.D. & Drevin, L. 2008. An empirical assessment of factors impeding effective password management. Journal of Information Privacy and Security, Volume 4, Issue 4, ISSN:1553-6548. P45-59. Kruger, H.A., Drevin, L. & Steyn, T. 2010. A vocabulary test to assess information security awareness. Information Management & Computer Security. Accepted for publication. National publications: Kruger, H.A., Steyn, P.J. & Kearney, W.D. 2002. Determinants of internal audit efficiency, South African Journal of Business Management, 33(3), September 2002. p53-62. Hattingh, J.M., Kruger, H.A. & Du Plessis, P.M. 2005 Linear model selection towards a framework using a mixed integer linear programming approach, The South African Statistical Journal, 39, September 2005. p197-220. Kruger, H.A. & Hattingh, J.M. 2006. A combined AHP- GP model to allocate internal auditing time to projects. ORION, 22(1), June 2006. p59-76. 7. Papers delivered International papers: Steyn, T., Kruger, H.A. & Drevin, L. 2007. Identity theft empirical evidence from a phishing exercise, In: New approaches for security, privacy and trust in complex environments. Proceedings of the IFIP TC-11 22 nd
International Information Security Conference (SEC 2007), eds. Venter, H., Eloff, M., Labuschagne, L., Eloff, J., Von Solms, R. ISBN:13:978-0-387-72366-2 New York: Springer, p193-203. Kruger, H.A., Drevin, L. & Steyn, T. 2007. Email security awareness A practical assessment of employee behaviour, In: IFIP International Federation for Information Processing, Volume 237, Fifth world conference on Information Security Education, eds. Futcher, L., Dodge, R. ISBN:13:978-0-387-73268-8. Boston: Springer, p33-40. United States Military Academy, West Point, New York, USA. 19-21 June 2007. Tsogang, M.P., Kruger, H.A. & Hattingh, J.M. 2007. 22nd European Conference on Operational Research. Price determination based on goal programming principles, Prague, Czech Republic. 9-11 July 2007. Du Plessis, P.M., Hattingh, J.M. & Kruger, H.A. 2008. The 18th triennial conference of the International Federation of Operational Research Societies (IFORS2008). Robust linear models: A comparison between a MILP and LMS approach, Sandton, South Kruger, H.A., Steyn, T., Drevin, L. & Medlin, B.D. 2008. How secure are passwords that will be used by future health care workers? In Redefining an agenda for Information Security, Proceedings of the 7th Annual Security Conference, Las Vegas, USA, June 2-3. Ed. G. Dhillon. Information Institute Publishing, Washington DC, USA. ISBN: 978-1-935160-01-4. H.A. 2009. Proceedings of the International Conference on Computational and Mathematical Methods in Science and Engineering (CMMSE). Robust techniques for regression models with minimal assumptions. An empirical study. Gijon, Asturias, Spain. 30 June 3 July 2009. ISBN 978-84-612-9727-6. p1417 1427. Lynette Drevin, Hennie Kruger, Tjaart Steyn. 2009. Determinants of password security: some educational aspects, in Proceedings of 9th IFIP TC3 World Conference on Computers in Education (WCCE). IFIP 11.8 WISE track. ISBN: 978-3-901882-35-7 (CD). Bento Goncalves, Brazil, 27-31 July 2009. H.A. 2009. 23rd European Conference on Operational Research. Experiments with robust techniques for regression models with minimum assumptions, Bonn, Germany. 5-8 July 2009. H.A. 2010. 24 th European Conference on Operational Research. Robust model development for non-linear models, Lisbon, Portugal. 11-14 July 2010.
De Jager, G.P., Huisman, H.M. & Kruger, H.A. 2010. A data envelopment analysis approach for evaluating efficiency of the Extreme Programming system development methodology. In Proceedings of the International Association for Development of the Information Society (IADIS) International Conference Information Systems 2010. Ed. Miguel Baptista Nunes, Pedro Isaias and Philip Powell. ISBN: 978-972-8939-09- 0. Porto, Portugal. 18-20 March 2010. H.A. 2010. Lecture Notes in Management Science. Proceedings of the 2 nd International Conference on Applied Operational Research (ICAOR10). Experiments to improve forecasting accuracy of regression models with minimal assumptions. Turku, Finland. August 2010. ISBN 978-952-12-2414-0. P34 44. National papers: De Jager, G.P., Huisman, H.M. & Kruger, H.A. 2010. The 9 th International Conference on Software Methodologies, Tools and Techniques. A quantitative model to evaluate post implementation efficiency of SCRUM. Yokohama, Japan. 29 September 1 October 2010. Smith, E.H., Kruger, H.A. & Goede, R. 2007 37 th Annual conference of the Operations Research Society of SA. An analytical framework for monitoring and optimizing bank branch network efficiency using data mining techniques. Cape Town. 10-13 September 2007. Kruger, H.A., Steyn, T., Drevin, L. & Medlin, B.D. 2008. Password Management: Empirical results from a RSA and USA study. In Innovative Minds, Proceedings of the Information Security for South Africa (ISSA 2008) Conference, Johannesburg, 7-9 July. ISBN 978-1-86854-693-0. Du Plessis, P.M., Hattingh, J.M. & Kruger, H.A. 2008. The 18th triennial conference of the International Federation of Operational Research Societies (IFORS2008). Robust linear models: A comparison between a MILP and LMS approach, Sandton, South Hattingh, J.M., Kruger, H.A. & Van der Westhuizen, M.M. 2008. The 18th triennial conference of the International Federation of Operational Research Societies (IFORS2008). Robust non-linear regression models with minimal assumptions, Sandton, South Kruger, H.A. & Kearney, W.D. 2009. Effective corporate governance: A case study using a value-focused approach. In Proceedings of the 21 st Conference of the South African Institute for Management Scientists (SAIMS). ISBN: 978-1-920176-53-2 (CD). Port Elizabeth, South Africa. 14 16 September 2009. Els, A., Kruger, H.A. & Hattingh, J.M. 2009. South
African Telecommunication Networks and Applications Conference (SATNAC 2009). A review of two management science techniques applied to decision making in the telecommunications industry (Poster presentation). Royal Swazi Spa, Swaziland. 30 August 2 September 2009. H.A. 2009. 38 th Annual conference of the Operations Research Society of SA. Model development for robust regression with minimal assumptions: An empirical study. Stellenbosch, South Africa. 21 23 September 2009. Kruger, H.A., Drevin, L. & Steyn, T. 2010. The use of an Information Security Vocabulary test to assess information security awareness an exploratory study, In: Proceedings of the South African Information Security Multi-Conference (SAISMC 2010), eds. Clarke, N.L., Furnell, S.M., Von Solms, R. ISBN: 978-1-84102-256-7, p13-22. Port Elizabeth, South Africa. 17 18 May 2010. Smith, E.H. & Kruger, H.A. 2010. A framework for evaluating IT security investments in a banking environment, Proceedings (on CD) of the Information Security for South Africa (ISSA 2010) Conference, Johannesburg, 2-4 August. ISBN: 978-1-4244-5494-5. IEEE Catalog Number: CFP1066I-CDR. Library of Congress: 2009937724. Baitshenyetsi, T., Hattingh, J.M. & Kruger, H.A. 2010. 39 th Annual conference of the Operations Research Society of SA. Applying a tree knapsack approach to general network design: a case study. Magoebaskloof, Tzaneen, Limpopo Province, South Africa. 26 29 September 2010.