Journal article 491 views 93 downloads
Executive decision-makers: a scenario-based approach to assessing organizational cyber-risk perception
Simon Parkin 
,
Kristen Kuhn,
Siraj Shaikh
,
Kristen Kuhn,
Siraj Shaikh
Journal of Cybersecurity, Volume: 9, Issue: 1
Swansea University Author:
Siraj Shaikh
-
PDF | Version of Record
This is an Open Access article distributed under the terms of the Creative Commons Attribution License (https://creativecommons.org/licenses/by/4.0/), which permits unrestricted reuse, distribution, and reproduction in any medium, provided the original work is properly cited.
Download (1018.91KB)
DOI (Published version): 10.1093/cybsec/tyad018
Abstract
The executive leadership in corporate organizations is increasingly challenged with managing cyber-risks, as an important part of wider business risk management. Cyber-risks are complex, with the threat landscape evolving, including digital infrastructure issues such as trust in networked supply cha...
| Published in: | Journal of Cybersecurity |
|---|---|
| ISSN: | 2057-2085 2057-2093 |
| Published: |
Oxford University Press (OUP)
2023
|
| Online Access: |
Check full text
|
| URI: | https://cronfa.swan.ac.uk/Record/cronfa63958 |
| first_indexed |
2023-08-23T13:48:37Z |
|---|---|
| last_indexed |
2024-11-25T14:13:11Z |
| id |
cronfa63958 |
| recordtype |
SURis |
| fullrecord |
<?xml version="1.0"?><rfc1807><datestamp>2024-07-25T13:40:43.4723731</datestamp><bib-version>v2</bib-version><id>63958</id><entry>2023-07-27</entry><title>Executive decision-makers: a scenario-based approach to assessing organizational cyber-risk perception</title><swanseaauthors><author><sid>50117e8faac2d0937989e14847105704</sid><ORCID>0000-0002-0726-3319</ORCID><firstname>Siraj</firstname><surname>Shaikh</surname><name>Siraj Shaikh</name><active>true</active><ethesisStudent>false</ethesisStudent></author></swanseaauthors><date>2023-07-27</date><deptcode>MACS</deptcode><abstract>The executive leadership in corporate organizations is increasingly challenged with managing cyber-risks, as an important part of wider business risk management. Cyber-risks are complex, with the threat landscape evolving, including digital infrastructure issues such as trust in networked supply chains, and emerging technologies. Moreover, engaging organizational leadership to assess for risk management is also difficult. This paper reports on a scenario-driven, workshop-based study undertaken with executive leadership to assess for cybersecurity and cyber-risk perception related to preparation for, and response to, potential incidents. The study involves leadership members at a large public–private organization. Our approach utilizes scenarios, which are structured in their design to explore and analyse aspects of business risk, risk ownership, technological complexity, and uncertainty faced by an organizational leadership. The method offers a means to engage with leadership at real-world organizations, capturing capacity and insights to manage business risks due to cyberattacks.</abstract><type>Journal Article</type><journal>Journal of Cybersecurity</journal><volume>9</volume><journalNumber>1</journalNumber><paginationStart/><paginationEnd/><publisher>Oxford University Press (OUP)</publisher><placeOfPublication/><isbnPrint/><isbnElectronic/><issnPrint>2057-2085</issnPrint><issnElectronic>2057-2093</issnElectronic><keywords>Security management, decision making, business continuity, risk analysis</keywords><publishedDay>5</publishedDay><publishedMonth>1</publishedMonth><publishedYear>2023</publishedYear><publishedDate>2023-01-05</publishedDate><doi>10.1093/cybsec/tyad018</doi><url>http://dx.doi.org/10.1093/cybsec/tyad018</url><notes/><college>COLLEGE NANME</college><department>Mathematics and Computer Science School</department><CollegeCode>COLLEGE CODE</CollegeCode><DepartmentCode>MACS</DepartmentCode><institution>Swansea University</institution><apcterm>SU Library paid the OA fee (TA Institutional Deal)</apcterm><funders/><projectreference/><lastEdited>2024-07-25T13:40:43.4723731</lastEdited><Created>2023-07-27T08:48:48.6669576</Created><path><level id="1">Faculty of Science and Engineering</level><level id="2">School of Mathematics and Computer Science - Computer Science</level></path><authors><author><firstname>Simon</firstname><surname>Parkin</surname><orcid>0000-0002-6667-0440</orcid><order>1</order></author><author><firstname>Kristen</firstname><surname>Kuhn</surname><order>2</order></author><author><firstname>Siraj</firstname><surname>Shaikh</surname><orcid>0000-0002-0726-3319</orcid><order>3</order></author></authors><documents><document><filename>63958__28359__5924d3506ecf48b786c7e0949fa90b6a.pdf</filename><originalFilename>63958VR.pdf</originalFilename><uploaded>2023-08-23T14:47:55.0831219</uploaded><type>Output</type><contentLength>1043360</contentLength><contentType>application/pdf</contentType><version>Version of Record</version><cronfaStatus>true</cronfaStatus><documentNotes>This is an Open Access article distributed under the terms of the Creative Commons Attribution License (https://creativecommons.org/licenses/by/4.0/), which permits unrestricted reuse, distribution, and reproduction in any medium, provided the original work is properly cited.</documentNotes><copyrightCorrect>true</copyrightCorrect><language>eng</language><licence>https://creativecommons.org/licenses/by/4.0/</licence></document></documents><OutputDurs/></rfc1807> |
| spelling |
2024-07-25T13:40:43.4723731 v2 63958 2023-07-27 Executive decision-makers: a scenario-based approach to assessing organizational cyber-risk perception 50117e8faac2d0937989e14847105704 0000-0002-0726-3319 Siraj Shaikh Siraj Shaikh true false 2023-07-27 MACS The executive leadership in corporate organizations is increasingly challenged with managing cyber-risks, as an important part of wider business risk management. Cyber-risks are complex, with the threat landscape evolving, including digital infrastructure issues such as trust in networked supply chains, and emerging technologies. Moreover, engaging organizational leadership to assess for risk management is also difficult. This paper reports on a scenario-driven, workshop-based study undertaken with executive leadership to assess for cybersecurity and cyber-risk perception related to preparation for, and response to, potential incidents. The study involves leadership members at a large public–private organization. Our approach utilizes scenarios, which are structured in their design to explore and analyse aspects of business risk, risk ownership, technological complexity, and uncertainty faced by an organizational leadership. The method offers a means to engage with leadership at real-world organizations, capturing capacity and insights to manage business risks due to cyberattacks. Journal Article Journal of Cybersecurity 9 1 Oxford University Press (OUP) 2057-2085 2057-2093 Security management, decision making, business continuity, risk analysis 5 1 2023 2023-01-05 10.1093/cybsec/tyad018 http://dx.doi.org/10.1093/cybsec/tyad018 COLLEGE NANME Mathematics and Computer Science School COLLEGE CODE MACS Swansea University SU Library paid the OA fee (TA Institutional Deal) 2024-07-25T13:40:43.4723731 2023-07-27T08:48:48.6669576 Faculty of Science and Engineering School of Mathematics and Computer Science - Computer Science Simon Parkin 0000-0002-6667-0440 1 Kristen Kuhn 2 Siraj Shaikh 0000-0002-0726-3319 3 63958__28359__5924d3506ecf48b786c7e0949fa90b6a.pdf 63958VR.pdf 2023-08-23T14:47:55.0831219 Output 1043360 application/pdf Version of Record true This is an Open Access article distributed under the terms of the Creative Commons Attribution License (https://creativecommons.org/licenses/by/4.0/), which permits unrestricted reuse, distribution, and reproduction in any medium, provided the original work is properly cited. true eng https://creativecommons.org/licenses/by/4.0/ |
| title |
Executive decision-makers: a scenario-based approach to assessing organizational cyber-risk perception |
| spellingShingle |
Executive decision-makers: a scenario-based approach to assessing organizational cyber-risk perception Siraj Shaikh |
| title_short |
Executive decision-makers: a scenario-based approach to assessing organizational cyber-risk perception |
| title_full |
Executive decision-makers: a scenario-based approach to assessing organizational cyber-risk perception |
| title_fullStr |
Executive decision-makers: a scenario-based approach to assessing organizational cyber-risk perception |
| title_full_unstemmed |
Executive decision-makers: a scenario-based approach to assessing organizational cyber-risk perception |
| title_sort |
Executive decision-makers: a scenario-based approach to assessing organizational cyber-risk perception |
| author_id_str_mv |
50117e8faac2d0937989e14847105704 |
| author_id_fullname_str_mv |
50117e8faac2d0937989e14847105704_***_Siraj Shaikh |
| author |
Siraj Shaikh |
| author2 |
Simon Parkin Kristen Kuhn Siraj Shaikh |
| format |
Journal article |
| container_title |
Journal of Cybersecurity |
| container_volume |
9 |
| container_issue |
1 |
| publishDate |
2023 |
| institution |
Swansea University |
| issn |
2057-2085 2057-2093 |
| doi_str_mv |
10.1093/cybsec/tyad018 |
| publisher |
Oxford University Press (OUP) |
| college_str |
Faculty of Science and Engineering |
| hierarchytype |
|
| hierarchy_top_id |
facultyofscienceandengineering |
| hierarchy_top_title |
Faculty of Science and Engineering |
| hierarchy_parent_id |
facultyofscienceandengineering |
| hierarchy_parent_title |
Faculty of Science and Engineering |
| department_str |
School of Mathematics and Computer Science - Computer Science{{{_:::_}}}Faculty of Science and Engineering{{{_:::_}}}School of Mathematics and Computer Science - Computer Science |
| url |
http://dx.doi.org/10.1093/cybsec/tyad018 |
| document_store_str |
1 |
| active_str |
0 |
| description |
The executive leadership in corporate organizations is increasingly challenged with managing cyber-risks, as an important part of wider business risk management. Cyber-risks are complex, with the threat landscape evolving, including digital infrastructure issues such as trust in networked supply chains, and emerging technologies. Moreover, engaging organizational leadership to assess for risk management is also difficult. This paper reports on a scenario-driven, workshop-based study undertaken with executive leadership to assess for cybersecurity and cyber-risk perception related to preparation for, and response to, potential incidents. The study involves leadership members at a large public–private organization. Our approach utilizes scenarios, which are structured in their design to explore and analyse aspects of business risk, risk ownership, technological complexity, and uncertainty faced by an organizational leadership. The method offers a means to engage with leadership at real-world organizations, capturing capacity and insights to manage business risks due to cyberattacks. |
| published_date |
2023-01-05T02:44:18Z |
| _version_ |
1822096525245808640 |
| score |
11.048302 |