EconPapers    
Economics at your fingertips  

EconPapers Home
About EconPapers

Working Papers
Journal Articles
Books and Chapters
Software Components

Authors

JEL codes
New Economics Papers

Advanced Search


EconPapers FAQ
Archive maintainers FAQ
Cookies at EconPapers

Format for printing

The RePEc blog
The RePEc plagiarism page

 

A Framework to Achieve Cybersecurity Accountability of Critical Infrastructure Providers – A Design Science Research Approach

Barbara Krumay (), Edward W. N. Bernroider () and Roman Walser ()
Additional contact information
Barbara Krumay: JKU Linz
Edward W. N. Bernroider: WU Vienna
Roman Walser: WU Vienna

A chapter in Organizing in a Digitized World, 2022, pp 233-248 from Springer

Abstract: Abstract Today’s pervasive use of information systems (IS) not only comes with many opportunities but also with considerable risks especially in relation to cyberattacks, which become increasingly sophisticated and dangerous. Especially organizations providing critical infrastructures are at risk, which are held to account by governments to ensure sufficient protection. Governments request information to monitor cybersecurity levels of critical infra-structure providers over time, which are today subject to respective nation-wide legislation in developed economies. Following guidelines of design science research, this study offers a generic framework that supports continuous monitoring and benchmarking of an organization’s cybersecurity status. It is generic allowing application by different critical infrastructure providers and usage by government institutions to help achieve oversight of the nation-al cybersecurity status. Our design proposition is supported by an extensive review of academic literature, the consultation of relevant industry standards, and two main rounds of field interactions. The framework includes 15 major risk areas, and a collection of associated metrics and controls, which cover material and social mechanisms. We would like to note that our domain of study would require more design work that targets knowledge accumulation spanning academic research and industry practice.

Keywords: Cybersecurity; Critical infrastructures; Design science research (search for similar items in EconPapers)
Date: 2022
References: Add references at CitEc
Citations:

There are no downloads for this item, see the EconPapers FAQ for hints about obtaining it.

Related works:
This item may be available elsewhere in EconPapers: Search for items with the same title.

Export reference: BibTeX RIS (EndNote, ProCite, RefMan) HTML/Text

Persistent link: https://EconPapers.repec.org/RePEc:spr:lnichp:978-3-030-86858-1_14

Ordering information: This item can be ordered from
http://www.springer.com/9783030868581

DOI: 10.1007/978-3-030-86858-1_14

Access Statistics for this chapter

More chapters in Lecture Notes in Information Systems and Organization from Springer
Bibliographic data for series maintained by Sonal Shukla () and Springer Nature Abstracting and Indexing ().

 
Share

RePEc
This site is part of RePEc and all the data displayed here is part of the RePEc data set.

Is your work missing from RePEc? Here is how to contribute.

Questions or problems? Check the EconPapers FAQ or send mail to .

Örebro UniversityEconPapers is hosted by the School of Business at Örebro University.

Page updated 2025-04-01
Handle: RePEc:spr:lnichp:978-3-030-86858-1_14