Information security in networked supply chains: impact of network vulnerability and supply chain integration on incentives to invest

Bandyopadhyay, Tridib; Jacob, Varghese S.; Raghunathan, Srinivasan

doi:10.1007/s10799-010-0066-1

Cited by 56 publications

(34 citation statements)

References 31 publications

(35 reference statements)

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Recent research has suggested several dimensions that have a substantial influence on a SC's vulnerability to cyber risk. These include different network configurations (Bandyopadhyay et al, 2010;Zhang et al, 2012), firm sizes (Tran et al, 2016), corporate cultures (Xue et al, 2013), industry sectors (Sharma and Routroy, 2016;Tran et al, 2016) and business principles (Durowoju et al, 2012;Charitoudi and Blyth, 2014). This research found that most studies take a generic perspective, and therefore, this study pinpoints the need for contextualised studies that address such dimensions in-depth to relate specific cyber risks to specific dimensions.…”

Section: A Research Agenda For Managing Cyber Risk In Supply Chainsmentioning

confidence: 76%

“…Smith et al (2007) recommend that SC integration, by aligning systems and processes, will yield better returns through standardised ways of working, shared security objectives and better general communication (see conceptual model, Figure 10). Bandyopadhyay et al (2010) argue that higher levels of integration and collaboration reduce free-riding behaviour when considering investment in cyber security.…”

Section: Inter-organizational Collaborationmentioning

confidence: 99%

See 1 more Smart Citation

Managing cyber risk in supply chains: a review and research agenda

Ghadge

Weiß

Caldwell

et al. 2019

SCM

View full text Add to dashboard Cite

Purpose In spite of growing research interest in cyber security, inter-firm based cyber risk studies are rare. Therefore, this study aims to investigate cyber risk management in supply chain contexts. Design/methodology/approach Adapting a systematic literature review process, papers from interdisciplinary areas published between 1990 and 2017 were selected. Different typologies, developed for conducting descriptive and thematic analysis, were established using data mining techniques to conduct a comprehensive, replicable and transparent review. Findings The review identifies multiple future research directions for cyber security/resilience in supply chains. A conceptual model is developed, which indicates a strong link between information technology, organisational and supply chain security systems. The human/behavioural elements within cyber security risk are found to be critical; however, behavioural risks have attracted less attention because of a perceived bias towards technical (data, application and network) risks. There is a need for raising risk awareness, standardised policies, collaborative strategies and empirical models for creating supply chain cyber-resilience. Research limitations/implications Different types of cyber risks and their points of penetration, propagation levels, consequences and mitigation measures are identified. The conceptual model developed in this study drives an agenda for future research on supply chain cyber security/resilience. Practical implications A multi-perspective, systematic study provides a holistic guide for practitioners in understanding cyber-physical systems. The cyber risk challenges and the mitigation strategies identified support supply chain managers in making informed decisions. Originality/value To the best of the authors’ knowledge, this is the first systematic literature review on managing cyber risks in supply chains. The review defines supply chain cyber risk and develops a conceptual model for supply chain cyber security systems and an agenda for future studies.

show abstract

Section: A Research Agenda For Managing Cyber Risk In Supply Chainsmentioning

confidence: 76%

Section: Inter-organizational Collaborationmentioning

confidence: 99%

Managing cyber risk in supply chains: a review and research agenda

Ghadge

Weiß

Caldwell

et al. 2019

SCM

View full text Add to dashboard Cite

show abstract

“…For example, the well know Electronic Data Interchange (EDI) and the more recent Continuous Replenishment Program that link manufacturers, distributors, and retailers within a supply chain [15].…”

Section: A the Problemmentioning

confidence: 99%

Finding the Weakest Link in the Interdependent Security Chain Using the Analytic Hierarchy Process

Pan¹,

Wang²,

Mei³

2015

JACN

View full text Add to dashboard Cite

Abstract-with the rapid development of network finance and electronic commerce, the network and information security problems are more complex and prominent, and economics of information security has also become a hot research topic. This paper uses AHP (analytic hierarchy process) method to find the weakest link in the interdependent security chain. And the result can help information security investment decision-making. This paper firstly introduces research background including current research situations about interdependent security and the weakest link in network security. Then it introduces problems about the information system security in corporations' security chain, finally modeling the AHP method to find the weakest link in interdependent security chain and gives a conclusion at last.Index Terms-Information security economics, AHP, the weakest link, interdependent security.

show abstract

“…Nevertheless, better interconnection does not come without risks. Modern IT has eliminated security barriers around resources and systems thus, given supply chains more opportunities to achieve better profitability and customer satisfaction by reducing production and inventory wastes (Svensson 2002) while on the contrary, put them into a higher possibility of disruption (Smith et al 2007;Bandyopadhyay et al 2010;Kerschbaum et al 2011). An organisation loses private information related to its supply chain can negatively impact future contractual decisions of its partners.…”

Section: Introductionmentioning

confidence: 99%

Information Security Risks in Supply Chain Management:

Ulhaq¹,

Kuruvilla²,

Nkhoma³

et al. 2016

IJISE

View full text Add to dashboard Cite

The security of information is up most important for not only organisations but also their supply chains. Based on literature review, the study proposes a framework implementing information protection that supports supply chain management at intra-organisational and interorganisational levels in the developing country context. The paper suggests that developing countries' dimensions of power distance, uncertainty avoidance, and collectivism actively support information protection practices in supply chain management.

show abstract

Information security in networked supply chains: impact of network vulnerability and supply chain integration on incentives to invest

Cited by 56 publications

References 31 publications

Managing cyber risk in supply chains: a review and research agenda

Managing cyber risk in supply chains: a review and research agenda

Finding the Weakest Link in the Interdependent Security Chain Using the Analytic Hierarchy Process

Information Security Risks in Supply Chain Management:

Contact Info

Product

Resources

About