A conceptual model for cybersecurity governance

Yusif, Salifu and Hafeez-Baig, Abdul ORCID: https://orcid.org/0000-0003-3848-8008 (2021) A conceptual model for cybersecurity governance. Journal of Applied Security Research, 16 (4). pp. 490-513. ISSN 1936-1610


Abstract

Cybersecurity is a growing problem associated with everything an individual or an organization does that is facilitated by the Internet. It is a multi-facetted program that can be addressed by cybersecurity governance. However, research has shown that many organizations face at least five basic challenges of cybersecurity. In this study, we developed a model for an effective cybersecurity governance that hopes to address these challenges, conceptualized as factors that must continuously be measured and evaluated. They are: (1) Cybersecurity strategy; (2) Standardized processes, (3) Compliance, (4) Senior leadership oversight, and (5) Resources.


Statistics for USQ ePrint 44956
Statistics for this ePrint Item
Item Type: Article (Commonwealth Reporting Category C)
Refereed: Yes
Item Status: Live Archive
Additional Information: Permanent restricted access to Published version in accordance with the copyright policy of the publisher.
Faculty/School / Institute/Centre: Current - Faculty of Business, Education, Law and Arts - School of Business (18 Jan 2021 -)
Faculty/School / Institute/Centre: Current - Faculty of Business, Education, Law and Arts - School of Business (18 Jan 2021 -)
Date Deposited: 22 Nov 2021 04:20
Last Modified: 23 Nov 2021 23:55
Uncontrolled Keywords: cybersecurity; cybersecurity governance; cybersecurity strategy; cybersecurity risk; cybersecurity compliance
Fields of Research (2008): 08 Information and Computing Sciences > 0806 Information Systems > 080610 Information Systems Organisation
08 Information and Computing Sciences > 0806 Information Systems > 080609 Information Systems Management
08 Information and Computing Sciences > 0806 Information Systems > 080611 Information Systems Theory
Fields of Research (2020): 46 INFORMATION AND COMPUTING SCIENCES > 4609 Information systems > 460904 Information security management
Socio-Economic Objectives (2008): E Expanding Knowledge > 97 Expanding Knowledge > 970110 Expanding Knowledge in Technology
E Expanding Knowledge > 97 Expanding Knowledge > 970108 Expanding Knowledge in the Information and Computing Sciences
Socio-Economic Objectives (2020): 22 INFORMATION AND COMMUNICATION SERVICES > 2204 Information systems, technologies and services > 220408 Information systems
22 INFORMATION AND COMMUNICATION SERVICES > 2204 Information systems, technologies and services > 220499 Information systems, technologies and services not elsewhere classified
22 INFORMATION AND COMMUNICATION SERVICES > 2204 Information systems, technologies and services > 220405 Cybersecurity
Identification Number or DOI: https://doi.org/10.1080/19361610.2021.1918995
URI: http://eprints.usq.edu.au/id/eprint/44956

Actions (login required)

View Item Archive Repository Staff Only