Business Strategy and Cybersecurity Breaches
IF 7.3
2区 管理学
Q1 COMPUTER SCIENCE, INFORMATION SYSTEMS
引用次数: 0
Abstract
This study examines whether a firm’s business strategy is an underlying determinant of cybersecurity breach likelihood. Based on organizational theory, firm strategy can focus on innovation or efficiency, with innovative strategy firms being more likely to have weaker, decentralized control systems, multiple technologies, and greater risk than firms with an efficiency-focused strategy. Following the Miles and Snow (1978) strategy topology, we predict and find that the prospector business strategy is associated with greater breach likelihood. We further explore IT awareness within the firm. Ex ante, it is unclear whether strategic IT policy formation is impounded into a firm’s strategy or can be impacted by individual executives and nonstrategy firm characteristics. We find that IT understanding at the executive or firm level can affect the relationship between strategy and breach likelihood. Collectively, our results indicate that business strategy is a useful indicator in evaluating firms’ cybersecurity activities.业务战略和网络安全漏洞
本研究考察了公司的商业战略是否是网络安全漏洞可能性的潜在决定因素。根据组织理论,企业战略可以关注创新或效率,与注重效率的企业相比,创新战略企业更有可能拥有较弱、分散的控制系统、多种技术和更大的风险。根据Miles和Snow(1978)的战略拓扑,我们预测并发现勘探者的商业战略与更大的违约可能性相关。我们进一步探索公司内部的信息技术意识。在此之前,还不清楚战略it政策的形成是否包含在公司的战略中,或者是否会受到个别高管和非战略公司特征的影响。我们发现,高管或公司层面的信息技术理解可以影响战略与违约可能性之间的关系。总体而言,我们的研究结果表明,企业战略是评估企业网络安全活动的有用指标。
本文章由计算机程序翻译,如有差异,请以英文原文为准。
求助全文
约1分钟内获得全文
求助全文
来源期刊
European Journal of Information Systems
工程技术-计算机:信息系统
CiteScore
23.10
自引率
4.20%
发文量
52
审稿时长
>12 weeks
期刊介绍:
The European Journal of Information Systems offers a unique European perspective on the theory and practice of information systems for a global readership. We actively seek first-rate articles that offer a critical examination of information technology, covering its effects, development, implementation, strategy, management, and policy.
求助内容:
应助结果提醒方式:
京公网安备 11010802042870号
