Cyber Governance Complex in Firms

Abstract

The securitization theory developed as part of the "Copenhagen School" has been adopted to a variety of security issues such as Military, Environment, Economics, Societal and Political Security. This paper adopts this theory to Cybersecurity to address the issues of cyberspace and then adopts the concept of corporate governance to develop the Cyber Governance Complex. Cyber Governance Complex visualized dynamic relationships among values of corporate assets that are accessible from cyberspace, intentions of hackers and criminals, discourses between governing body and management, and status of cyber risk and controls. It allowed governing body in the firms to balance corporate value with cyber risk based on understanding of these dynamic relationships through discourses with management.