建立网络安全专题框架：系统文献审查方法

Q2 Computer Science

Journal of Systems and Information Technology Pub Date : 2024-04-10 DOI:10.1108/jsit-07-2023-0132

Tze Yin Khaw, A. Amran, A. Teoh

{"title":"建立网络安全专题框架：系统文献审查方法","authors":"Tze Yin Khaw, A. Amran, A. Teoh","doi":"10.1108/jsit-07-2023-0132","DOIUrl":null,"url":null,"abstract":"\nPurpose\nThis paper aims to explore the factors affecting cybersecurity implementation in organizations in various countries and develop a cybersecurity framework to improve cybersecurity practices within organizations for cybersecurity risk management through a systematic literature review (SLR) approach.\n\n\nDesign/methodology/approach\nThis SLR adhered to RepOrting Standards for Systematics Evidence Syntheses (ROSES) publication standards and used various research approaches. The study’s article selection process involved using Scopus, one of the most important scientific databases, to review articles published between 2014 and 2023.\n\n\nFindings\nThis review identified the four main themes: individual factors, organizational factors, technological factors and governmental role. In addition, nine subthemes that relate to these primary topics were established.\n\n\nOriginality/value\nThis research sheds light on the multifaceted nature of cybersecurity by exploring factors influencing implementation and developing an improvement framework, offering valuable insights for researchers to advance theoretical developments, assisting industry practitioners in tailoring cybersecurity strategies to their needs and providing policymakers with a basis for creating more effective cybersecurity regulations and standards.\n","PeriodicalId":38615,"journal":{"name":"Journal of Systems and Information Technology","volume":null,"pages":null},"PeriodicalIF":0.0000,"publicationDate":"2024-04-10","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":"{\"title\":\"Building a thematic framework of cybersecurity: a systematic literature review approach\",\"authors\":\"Tze Yin Khaw, A. Amran, A. Teoh\",\"doi\":\"10.1108/jsit-07-2023-0132\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"\\nPurpose\\nThis paper aims to explore the factors affecting cybersecurity implementation in organizations in various countries and develop a cybersecurity framework to improve cybersecurity practices within organizations for cybersecurity risk management through a systematic literature review (SLR) approach.\\n\\n\\nDesign/methodology/approach\\nThis SLR adhered to RepOrting Standards for Systematics Evidence Syntheses (ROSES) publication standards and used various research approaches. The study’s article selection process involved using Scopus, one of the most important scientific databases, to review articles published between 2014 and 2023.\\n\\n\\nFindings\\nThis review identified the four main themes: individual factors, organizational factors, technological factors and governmental role. In addition, nine subthemes that relate to these primary topics were established.\\n\\n\\nOriginality/value\\nThis research sheds light on the multifaceted nature of cybersecurity by exploring factors influencing implementation and developing an improvement framework, offering valuable insights for researchers to advance theoretical developments, assisting industry practitioners in tailoring cybersecurity strategies to their needs and providing policymakers with a basis for creating more effective cybersecurity regulations and standards.\\n\",\"PeriodicalId\":38615,\"journal\":{\"name\":\"Journal of Systems and Information Technology\",\"volume\":null,\"pages\":null},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2024-04-10\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"0\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"Journal of Systems and Information Technology\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1108/jsit-07-2023-0132\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"Q2\",\"JCRName\":\"Computer Science\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"Journal of Systems and Information Technology","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1108/jsit-07-2023-0132","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"Q2","JCRName":"Computer Science","Score":null,"Total":0}

引用次数: 0

摘要

本文旨在探讨影响各国组织实施网络安全的因素，并通过系统文献综述（SLR）方法制定一个网络安全框架，以改进组织内部的网络安全实践，从而实现网络安全风险管理。研究的文章选择过程包括使用 Scopus（最重要的科学数据库之一），对 2014 年至 2023 年间发表的文章进行审查。研究结果本次审查确定了四大主题：个人因素、组织因素、技术因素和政府作用。原创性/价值这项研究通过探讨影响实施的因素和制定改进框架，揭示了网络安全的多面性，为研究人员推进理论发展提供了宝贵的见解，帮助行业从业人员根据自身需求制定网络安全战略，并为政策制定者提供了制定更有效的网络安全法规和标准的依据。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文本刊更多论文

Building a thematic framework of cybersecurity: a systematic literature review approach

Purpose This paper aims to explore the factors affecting cybersecurity implementation in organizations in various countries and develop a cybersecurity framework to improve cybersecurity practices within organizations for cybersecurity risk management through a systematic literature review (SLR) approach. Design/methodology/approach This SLR adhered to RepOrting Standards for Systematics Evidence Syntheses (ROSES) publication standards and used various research approaches. The study’s article selection process involved using Scopus, one of the most important scientific databases, to review articles published between 2014 and 2023. Findings This review identified the four main themes: individual factors, organizational factors, technological factors and governmental role. In addition, nine subthemes that relate to these primary topics were established. Originality/value This research sheds light on the multifaceted nature of cybersecurity by exploring factors influencing implementation and developing an improvement framework, offering valuable insights for researchers to advance theoretical developments, assisting industry practitioners in tailoring cybersecurity strategies to their needs and providing policymakers with a basis for creating more effective cybersecurity regulations and standards.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

Journal of Systems and Information Technology Computer Science-Computer Science (all)

CiteScore

4.40

自引率

0.00%

发文量

期刊介绍： The Journal provides an avenue for scholarly work that researches systems thinking applications, information systems, electronic business, data analytics, information sciences, information management, business intelligence, and complex adaptive systems in the application domains of the business environment, health, the built environment, cultural settings, and the natural environment. Papers examine the wider implications of the systems or technology being researched. This means papers consider aspects such as social and organisational relevance, business value, cognitive implications, social implications, impact on individuals or community perspectives, and the development of solutions, rather than focusing solely on the technology. The Journal of Systems and Information Technology is open to a wide range of research methodologies and paper styles including case studies, surveys, experiments, review papers, design science, design thinking and both theoretical and methodological papers. The focus of the journal will be to publish work that fits into the following broad areas of research: Behavioural Information Systems and Human-Computer Interaction, Data Analytics, Data, Information and Security, E-Business, Intelligent Systems and Applications, Logistics and Supply Chain Management/Optimisation, Social Media Analysis, Technology Enhanced Learning.