A Data Driven Approach to Board Cybersecurity Governance

Girn, SARV

A Data Driven Approach to Board Cybersecurity Governance

Girn, SARV

Permalink

Publisher:: AIS
Publication Type:: Conference Proceeding
Citation:: 2022, 7-4-22
Issue Date:: 2022-07-04

Open Access

Copyright Clearance Process

Recently Added
In Progress
Open Access

This item is open access.

Adobe PDF

Download full textAdobe PDF (652 kB)

View statistics

Full metadata record

Field	Value	Language
dc.contributor.author	Girn, SARV
dc.date	2022-07-05
dc.date.accessioned	2022-07-20T22:38:46Z
dc.date.available	2022-07-04
dc.date.available	2022-07-20T22:38:46Z
dc.date.issued	2022-07-04
dc.identifier.citation	2022, 7-4-22
dc.identifier.uri	http://hdl.handle.net/10453/159073
dc.description.abstract	The importance of managing cybersecurity has increased as the dependency upon online digital services has grown, and as threats to the digital economy have increased in sophistication and volume. Senior executives and board directors remain apprehensive when it comes to governing the quality of their organization’s cybersecurity. Whilst there has been a growth in awareness in recent years, this has not provided terminology or metrics that allow them to confidently govern cybersecurity. A systematic literature review demonstrates there is limited research targeted at this audience. The more technical cybersecurity and risk professionals are better served. Further research is warranted so that a practical cybersecurity model aimed at senior executives and board directors is defined. This would be akin to financial reporting that frames the financial posture in terms of cash flow, assets, and liabilities. The model would be extensible and enable improvements through further research as cybersecurity evolves. Keywords: executive, board director, cybersecurity metrics, lexicon, governance, assurance
dc.language	en
dc.publisher	AIS
dc.relation.ispartof	Pacific Asia Conference on Information Systems 2022
dc.relation.ispartofseries	AIS ELECTRONIC LIBRARY (AISEL)
dc.rights	info:eu-repo/semantics/openAccess
dc.title	A Data Driven Approach to Board Cybersecurity Governance
dc.type	Conference Proceeding
utslib.citation.volume	7-4-22
utslib.location.activity	TAIPEI-SYDNEY
pubs.organisational-group	/University of Technology Sydney
pubs.organisational-group	/University of Technology Sydney/Faculty of Engineering and Information Technology
pubs.organisational-group	/University of Technology Sydney/Faculty of Engineering and Information Technology/School of Computer Science
utslib.copyright.status	open_access	*
pubs.consider-herdc	true
dc.date.updated	2022-07-20T22:38:45Z
pubs.finish-date	2022-07-09
pubs.place-of-publication	AIS
pubs.publication-status	Published online
pubs.start-date	2022-07-05
pubs.volume	7-4-22
dc.location	AIS

Abstract:

The importance of managing cybersecurity has increased as the dependency upon online digital services has grown, and as threats to the digital economy have increased in sophistication and volume. Senior executives and board directors remain apprehensive when it comes to governing the quality of their organization’s cybersecurity. Whilst there has been a growth in awareness in recent years, this has not provided terminology or metrics that allow them to confidently govern cybersecurity. A systematic literature review demonstrates there is limited research targeted at this audience. The more technical cybersecurity and risk professionals are better served. Further research is warranted so that a practical cybersecurity model aimed at senior executives and board directors is defined. This would be akin to financial reporting that frames the financial posture in terms of cash flow, assets, and liabilities. The model would be extensible and enable improvements through further research as cybersecurity evolves. Keywords: executive, board director, cybersecurity metrics, lexicon, governance, assurance

Please use this identifier to cite or link to this item:

http://hdl.handle.net/10453/159073