Cyber Risk Awareness in Small and Medium Enterprises
Loading...
Authors
Author (Corporation)
Publication date
2019
Typ of student thesis
Master
Course of study
Collections
Type
11 - Student thesis
Editors
Editor (Corporation)
Supervisor
Parent work
Special issue
DOI of the original publication
Link
Series
Series number
Volume
Issue / Number
Pages / Duration
Patent number
Publisher / Publishing institution
Hochschule für Wirtschaft FHNW
Place of publication / Event location
Olten
Edition
Version
Programming language
Assignee
Practice partner / Client
Abstract
Cyber security is an emerging topic, as headlines on data breaches in major global firms are increasing alarmingly. However, not only large corperations are vulnerable to cybercrime; attacks on Small and Medium Enterprises (SMEs) are now considered a common occurence worldwide. Reasons for the high susceptibility of SMEs range from a general lack of resources to a low awareness of possible threats. Raising cyber risk awareness on all levels in an organisation is considered the best security return on invested capital. Different intervention approaches to increase cyber risk awareness among employees were studied and various methods to measure the respective effectiveness can be found in literature. This study investigated cyber risk awareness in SMEs in Switzerland. A design science research approach was followed to develop a framework to guide SMEs through the process of raising cyber risk awareness among employees. The framework was developed based on five principles adapted from ISACA’s “Six Principles for a Governance System”.The Cyber Risk Awareness framework, introduced in this research, is inspired by the Deming cycle and aims at continous improvement. A single case study, an interview with a cyber security expert plus an interview with a governance body formed the three-stage evaluation process, which supports the validity and practical usability of the framework.
Keywords
Subject (DDC)
Event
Exhibition start date
Exhibition end date
Conference start date
Conference end date
Date of the last check
ISBN
ISSN
Language
English
Created during FHNW affiliation
Yes
Strategic action fields FHNW
Publication status
Review
Open access category
License
Citation
Steinacher, T. (2019). Cyber Risk Awareness in Small and Medium Enterprises [Hochschule für Wirtschaft FHNW]. https://irf.fhnw.ch/handle/11654/39928