Cyber risk management strategies and integration: toward supply chain cyber resilience and robustness

IF 5.9 3区管理学 Q1 MANAGEMENT

International Journal of Physical Distribution & Logistics Management Pub Date : 2024-09-05 DOI:10.1108/ijpdlm-12-2023-0445

Amer Jazairy, Mazen Brho, Ila Manuj, Thomas J. Goldsby

{"title":"Cyber risk management strategies and integration: toward supply chain cyber resilience and robustness","authors":"Amer Jazairy, Mazen Brho, Ila Manuj, Thomas J. Goldsby","doi":"10.1108/ijpdlm-12-2023-0445","DOIUrl":null,"url":null,"abstract":"<h3>Purpose</h3>\n<p>Despite the proliferation of cyberthreats upon the supply chain (SC) at large, knowledge on SC cybersecurity is scarce and predominantly conceptual or descriptive. Addressing this gap, this research examines the effect of SC cyber risk management strategies on integration decisions for cybersecurity (with suppliers, customers, and internally) to enhance the SC’s cyber resilience and robustness.</p>\n<h3>Design/methodology/approach</h3>\n<p>A research model grounded in the supply chain risk management (SCRM) literature, with roots in the Dynamic Capabilities View and the Relational View, was developed. Survey responses of 388 SC managers at US manufacturers were obtained to test the model.</p>\n<h3>Findings</h3>\n<p>An impact of SC cyber risk management strategies on internal cyber integration was detected, which in turn impacted external cyber integration with both suppliers and customers. Further, a positive effect of internal and customer cyber integration on both cyber resilience and robustness was found, while cyber integration with suppliers impacted neither.</p>\n<h3>Practical implications</h3>\n<p>Industry practitioners may adapt certain risk management and integration strategies to enhance the cybersecurity posture of their SCs.</p>\n<h3>Originality/value</h3>\n<p>This research bridges between the established domain of SCRM and the emergent field of SC cybersecurity by forming and testing novel relationships between SCRM-rooted constructs tailored to an SC cyber risks context.</p>","PeriodicalId":14251,"journal":{"name":"International Journal of Physical Distribution & Logistics Management","volume":"22 1","pages":""},"PeriodicalIF":5.9000,"publicationDate":"2024-09-05","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"International Journal of Physical Distribution & Logistics Management","FirstCategoryId":"91","ListUrlMain":"https://doi.org/10.1108/ijpdlm-12-2023-0445","RegionNum":3,"RegionCategory":"管理学","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"Q1","JCRName":"MANAGEMENT","Score":null,"Total":0}

引用次数: 0

Abstract

Purpose

Despite the proliferation of cyberthreats upon the supply chain (SC) at large, knowledge on SC cybersecurity is scarce and predominantly conceptual or descriptive. Addressing this gap, this research examines the effect of SC cyber risk management strategies on integration decisions for cybersecurity (with suppliers, customers, and internally) to enhance the SC’s cyber resilience and robustness.

Design/methodology/approach

A research model grounded in the supply chain risk management (SCRM) literature, with roots in the Dynamic Capabilities View and the Relational View, was developed. Survey responses of 388 SC managers at US manufacturers were obtained to test the model.

Findings

An impact of SC cyber risk management strategies on internal cyber integration was detected, which in turn impacted external cyber integration with both suppliers and customers. Further, a positive effect of internal and customer cyber integration on both cyber resilience and robustness was found, while cyber integration with suppliers impacted neither.

Practical implications

Industry practitioners may adapt certain risk management and integration strategies to enhance the cybersecurity posture of their SCs.

Originality/value

This research bridges between the established domain of SCRM and the emergent field of SC cybersecurity by forming and testing novel relationships between SCRM-rooted constructs tailored to an SC cyber risks context.

查看原文本刊更多论文

网络风险管理策略与整合：实现供应链网络复原力和稳健性

目的尽管网络威胁在整个供应链（SC）中不断扩散，但有关供应链网络安全的知识却很少，而且主要是概念性或描述性的。针对这一空白，本研究探讨了供应链网络风险管理策略对（与供应商、客户和内部）网络安全整合决策的影响，以增强供应链的网络复原力和稳健性。设计/方法/途径以供应链风险管理（SCRM）文献为基础，以动态能力观和关系观为根基，建立了一个研究模型。研究结果发现，供应链网络风险管理策略对内部网络整合产生影响，进而影响到与供应商和客户的外部网络整合。此外，研究还发现内部和客户网络整合对网络复原力和稳健性都有积极影响，而与供应商的网络整合对两者都没有影响。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

International Journal of Physical Distribution & Logistics Management MANAGEMENT-

CiteScore

11.20

自引率

10.40%

发文量

期刊介绍： IJPDLM seeks strategically focused, theoretically grounded, empirical and conceptual, quantitative and qualitative, rigorous and relevant, original research studies in logistics, physical distribution and supply chain management operations and associated strategic issues. Quantitatively oriented mathematical and modelling research papers are not suitable for IJPDLM. Desired topics include, but are not limited to: Customer service strategy Omni-channel and multi-channel distribution innovations Order processing and inventory management Implementation of supply chain processes Information and communication technology Sourcing and procurement Risk management and security Personnel recruitment and training Sustainability and environmental Collaboration and integration Global supply chain management and network complexity Information and knowledge management Legal, financial and public policy Retailing, channels and business-to-business management Organizational and human resource development Logistics and SCM education.