 The impact of cybersecurity disclosure on banks’ performance: the moderating role of corporate governance in the MENA regionDalia Hussein Elsayed (),
Tariq H. Ismail () and
Eman Adel Ahmed ()
Future Business Journal, 2024, vol. 10, issue 1, 1-15 Abstract: Abstract This study aims to: (1) examine the impact of cybersecurity disclosure on banks’ performance and (2) explore whether the existence of a chief risk officer (CRO), an information technology (IT) committee, and a board of directors (BOD)’ size moderates the association between cybersecurity disclosure and bank performance. The study used manual textual analysis to measure cybersecurity disclosure in a sample of listed banks in the MENA region countries based on data from 2019 to 2021. The data were collected from annual reports and financial statements of banks available at Orbis Bank Focus database. The study employed a random effect regression model to test the hypotheses and discuss the results. The findings show that banks in the MENA region are increasingly interested in disclosing cybersecurity information, where cybersecurity disclosure over the sample years is increasing from 17% in 2019 to 19.6% in 2021. In addition, the results show that cybersecurity disclosure has a positive and significant influence on bank performance. Furthermore, the findings indicate that the presence of a CRO moderates the relationship between cybersecurity disclosure and bank performance. These findings show that depending largely on a bank's CRO to handle complex and dynamic risks can have serious consequences for decision making processes connected to managing cybersecurity risk and disclosure. This paper creates a new research paradigm by focusing on the disclosure of cybersecurity information in the MENA banking sector, where exploring the moderating role of the CRO, IT committee, and board size in enhancing the cybersecurity disclosure-bank performance relationship is lacking. The findings provide practical implications for various stakeholders, where it reveals the current practices of cybersecurity disclosure of banks in the MENA region with the objective of minimizing information asymmetry, maintaining public trust, and identifying potential risks of financial distress. In addition, the results direct the attention of banks and regulators toward the role of CRO in risk governance, particularly in managing cyber risks within the banking industry. Keywords: Cyberattacks; Cybersecurity disclosure; Chief risk officer; Information technology committee; Bank performance; MENA region (search for similar items in EconPapers) Downloads: (external link) Related works: Export reference: BibTeX RIS (EndNote, ProCite, RefMan) HTML/Text Persistent link: https://EconPapers.repec.org/RePEc:spr:futbus:v:10:y:2024:i:1:d:10.1186_s43093-024-00402-9 Ordering information: This journal article can be ordered from DOI: 10.1186/s43093-024-00402-9 Access Statistics for this article Future Business Journal is currently edited by Soad Kamel Rizk and Hayam Wahba More articles in Future Business Journal from Springer |
Is your work missing from RePEc? Here is how to contribute.
Questions or problems? Check the EconPapers FAQ or send mail to .
EconPapers is hosted by the
School of Business at Örebro University.