Organizational Characteristics Influencing SME Information Security Maturity

Mijnhardt, Frederik; Baars, Thijs; Spruit, Marco

doi:10.1080/08874417.2016.1117369

Cited by 29 publications

(41 citation statements)

References 25 publications

(40 reference statements)

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Broad distributions from the participant responses could be showing that the focus areas in the ISFAM are too broadly scoped. This research, and the investigations by Mijnhardt et al (2014) do not account for this. Another aspect not analyzed in this investigation is the co-influence of organizational characteristics.…”

Section: Discussionmentioning

confidence: 80%

“…In earlier published work (Mijnhardt et al 2014), organizational characteristics were derived that pertain to SME information security. The research described in this paper follows up on those previous efforts by further evaluating the organizational characteristics and their measurement levels, and how they pertain to the ISFAM maturity matrix through a survey.…”

Section: Methodsmentioning

confidence: 99%

“…These organizational characteristics provide the possibility to distinguish between a wide variety of different organizations measured in both internal as external factors. Mijnhardt et al (2014) structure the organizational characteristics in themes. These themes are derived from the literature and the interviews, but are not statistical constructs.…”

mentioning

confidence: 99%

“…A previous investigation by Mijnhardt et al (2014) researched the organizational characteristics in SME information security. Through a literature study and an evaluation with domain-experts, a coherent list of organizational characteristics is delivered.…”

mentioning

confidence: 99%

“…However, (Mijnhardt et al 2014) did not investigate the relation that the identified organizational characteristics have to the ISFAM, or the influence these organizational characteristics have on information security in a quantitative measure. This research attempts to deploy these organizational characteristics on the ISFAM, and understand the influence the organizational characteristics have on focus areas within the ISFAM.…”

mentioning

confidence: 99%

See 4 more Smart Citations

An analytics approach to adaptive maturity models using organizational characteristics

et al. 2016

Self Cite

View full text Add to dashboard Cite

Section: Discussionmentioning

confidence: 80%

Section: Methodsmentioning

confidence: 99%

mentioning

confidence: 99%

mentioning

confidence: 99%

mentioning

confidence: 99%

See 3 more Smart Citations

An analytics approach to adaptive maturity models using organizational characteristics

et al. 2016

Self Cite

View full text Add to dashboard Cite

A Questionnaire Model for Cybersecurity Maturity Assessment of Critical Infrastructures

Özkan

Spruit

2019

Lecture Notes in Computer Science

Self Cite

View full text Add to dashboard Cite

Critical infrastructures are important assets for everyday life and wellbeing of the people. People can be effected dramatically if critical infrastructures are vulnerable and not protected against various threats. Given the increasing cybersecurity risks and the large impact that these risks may bring to the critical infrastructures, assessing and improving the cybersecurity capabilities of the service providers and the administrators is crucial for sustainability.This research aims to provide a questionnaire model for assessing and improving cybersecurity capabilities based on industry standards. Another aim of this research is to provide service providers and the administrators of the critical infrastructures a personalized guidance and an implementation plan for cybersecurity capability improvement.

show abstract

Addressing SME Characteristics for Designing Information Security Maturity Models

Özkan

Spruit

2020

IFIP Advances in Information and Communication Technology

Self Cite

View full text Add to dashboard Cite

This paper identifies the effects of small and medium-sized enterprises' (SME) characteristics on the general design principles for maturity models in the information security domain. The purpose is to guide the research on information security maturity modelling for SMEs that will fit in form and function for their capability assessment and development purposes, and promote organizational learning and development. This study reviews the established frameworks of general design principles for maturity models and projects the design requirements of our envisioned information security maturity model for SMEs. Maturity models have different purposes of uses (descriptive, prescriptive and comparative) and design principles with respect to these purposes of uses. The mapping of SME characteristics and design principles facilitates the development of an information security maturity model that systematically integrates the desired qualities and components addressing SME characteristics and requirements.

show abstract

Organizational Characteristics Influencing SME Information Security Maturity

Cited by 29 publications

References 25 publications

An analytics approach to adaptive maturity models using organizational characteristics

An analytics approach to adaptive maturity models using organizational characteristics

A Questionnaire Model for Cybersecurity Maturity Assessment of Critical Infrastructures

Addressing SME Characteristics for Designing Information Security Maturity Models

Contact Info

Product

Resources

About