Corporate management boards' information security orientation: an analysis of cybersecurity incidents in DAX 30 companies

被引：3

作者：

Georg-Schaffner, L. ^{[1
]}

Prinz, E. ^{[1
]}

机构：

[1] Univ Strasbourg, EM Strasbourg Business Sch, Strasbourg, France

来源：

JOURNAL OF MANAGEMENT & GOVERNANCE | 2022年 / 26卷 / 04期

关键词：

Security management; Cybersecurity incidents; Management boards; Germany; TOP MANAGEMENT; UPPER ECHELONS; FIRM PERFORMANCE; TEAM; TECHNOLOGY; GOVERNANCE; SYSTEMS; LEVEL; RESPONSIBILITIES; ASSIMILATION;

D O I：

10.1007/s10997-021-09588-4

中图分类号：

C93 [管理学];

学科分类号：

12 ; 1201 ; 1202 ; 120202 ;

摘要：

Our study analyzes the impact of cybersecurity incidents (CSIs) at executive level in German blue-chip companies between 2005 and 2018. Using Upper Echelons Theory, we examine the effect of CSIs on both the composition of management boards as well as their members' profiles and related responsibilities, performing a qualitative in-depth analysis of the positive cases found. Our results show that while CSIs are a common problem for large German groups, only a few of them have addressed IT-related incidents directly through governance. Firms that reacted strongly went against the general trend, and either added a new functional unit to the management board or strengthened functions related to the issue. Our findings indicate that German blue-chip companies have not yet devised a common strategy to deal with CSIs. Firms that reshape their management boards tend instead to take a more compliance-oriented approach.

引用

页码：1375 / 1408

页数：34

共 50 条

[1] Corporate management boards’ information security orientation: an analysis of cybersecurity incidents in DAX 30 companies
L. Georg-Schaffner
E. Prinz
Journal of Management and Governance, 2022, 26 : 1375 - 1408
[2] WOMEN QUOTA OF DAX 30 COMPANIES AND THEIR CORPORATE SUSTAINABILITY REPORTING
Binder, Bettina C. K.
13TH ANNUAL CONFERENCE OF THE EUROMED ACADEMY OF BUSINESS: BUSINESS THEORY AND PRACTICE ACROSS INDUSTRIES AND MARKETS, 2020, : 1289 - 1291
[3] THE VALUE OF CORPORATE REPUTATION FOR SHAREHOLDERS: EVIDENCE FROM GERMANY FOR DAX 30 COMPANIES
Raithel, Sascha
PROCEEDINGS OF THE 2009 ACADEMY OF MARKETING SCIENCE (AMS) ANNUAL CONFERENCE, 2015, : 24 - 24
[4] The Effectiveness of Corporate Culture Toward Information Security Incidents
Almubark, Abdullah
Hatanaka, Nobutoshi
Uchida, Osamu
Ikeda, Yukivo
2015 WORLD CONGRESS ON INFORMATION TECHNOLOGY AND COMPUTER APPLICATIONS (WCITCA), 2015,
[5] The Utility of Information Security Training and Education on Cybersecurity Incidents: An empirical evidence
Eunkyung Kweon
Hansol Lee
Sangmi Chai
Kyeongwon Yoo
Information Systems Frontiers, 2021, 23 : 361 - 373
[6] The Utility of Information Security Training and Education on Cybersecurity Incidents: An empirical evidence
Kweon, Eunkyung
Lee, Hansol
Chai, Sangmi
Yoo, Kyeongwon
INFORMATION SYSTEMS FRONTIERS, 2021, 23 (02) : 361 - 373
[7] Information Technology Governance and Corporate Boards' Relationship with Companies' Performance and Earnings Management: A Longitudinal Approach
Singh, Harman Preet
Alhulail, Hilal Nafil
SUSTAINABILITY, 2023, 15 (08)
[8] Information security management incidents in research–development
Finat, Carmen (carmen.finat@incdmtm.ro), 1600, Editura ASE Bucuresti
[9] Cybersecurity Risk Management Scenarios for Teaching Information Security Management
Allison, Jordan
JOURNAL OF APPLIED SECURITY RESEARCH, 2024,
[10] A Corporate Employee as a Subject of Corporate Information Security Management
L. V. Astakhova
Scientific and Technical Information Processing, 2020, 47 : 113 - 118

← 1 2 3 4 5 →