Paradoxical tensions in the implementation of digital security governance: Toward an ambidextrous approach to governing digital security

Schinagl, Stef; Shahim, A.; Khapova, Svetlana N.

doi:10.1016/j.cose.2022.102903

Cited by 4 publications

(12 citation statements)

References 32 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…For example, ISG focuses on defining the roles, responsibilities and organizational structures for security, with the goal of providing strategic direction, ensuring that objectives are achieved, ascertaining that risks are managed appropriately and verifying that the enterprise's resources are used responsibly (Tan et al 2017 As cybersecurity continues to emerge as a crucial strategic concern and significant risk for organizations, there is a growing demand for research in the field of ISG (Schinagl & Shahim 2020). From this perspective, researchers are expanding their studies to focus on various strategic topics related to ISG, including the changing role of the Board of Directors (Rothrock et al 2018;Von Solms & Von Solms, 2018;Gale et al, 2022), metrics, scoring systems, and assessment studies to better understand how to measure performance, control, and improve ISG (Maleh et al 2017;Anu 2022;Herath et al, 2022), cutting ties and alleviating tensions to understand what hinders ISG implementations (Slayton 2021;Schinagl et al 2022), and, in particular, developing a wide variety of ISG models and frameworks (Maynard et al 2018;Nicho 2018;Alghamdi et al 2020).…”

Section: Theoretical Background: Digital Security Governance 1backgro...mentioning

confidence: 99%

“…Moreover, even less is known about how the implementation of ISG is influenced by digital environments. This is an important research gap because in complex connected digital environments, "conflicting demands", i.e., tensions, intensify and possibly impact ISG implementations (Smith & Lewis 2011;Schad et al 2016;Schinagl et al 2022). For example, organizations are confronted with the demands of the digital landscape, which drives the need for innovation and gaining a competitive edge.…”

Section: Theoretical Background: Digital Security Governance 1backgro...mentioning

confidence: 99%

“…Chapter 4 addresses a recurring research gap concerning the lack of theoretical and empirical guidance for governing and maintaining control over security in contemporary digital environments (Bongiovanni et al, 2022). Despite significant research efforts, current DSG approaches continue to receive criticism for their lack of effectiveness in the face of ongoing high-impact cyberattacks (Lidster & Rahman, 2018;Jalali et al, 2019;AlGhamdi et al, 2020;Schinagl et al, 2022). More specifically, this chapter highlights the problem of the "one size fits all" mentality prevalent in current DSG approaches that often overlook the crucial role of the organizational context in achieving effective DSG (Siponen & Willison, 2009;Williams et al, 2013;Mishra, 2015;Al-Ghamdi et al, 2020).…”

Section: Contribution and Chaptersmentioning

confidence: 99%

“…In today's digital world, concerns regarding cyberattacks, as well as related business interruptions, financial losses, and long-term intangible damage, are ever increasing (Jalali et al, 2019;Liu et al, 2020;Schinagl et al, 2023). The WannaCry and NotPetya ransomware attacks shook the world and showed how attacks on digital systems can seriously disrupt entire businesses beyond their IT operations (Dhillon et al, 2021).…”

Section: Introductionmentioning

confidence: 99%

“…Currently, cybersecurity failures are daily news, and global cybercrime costs are expected to grow by 15 percent annually in the coming years, reaching $10.5 trillion USD annually by 2025, compared to $3 trillion USD in 2015, making it more profitable than the global trade of all major illegal drugs 8 . Against this backdrop, governance of digital security is increasingly viewed as crucial in anticipating the ever-increasing impact of cyberattacks (Nicho, 2018;Liu et al, 2020;Schinagl et al, 2022).…”

Section: Introductionmentioning

confidence: 99%

See 4 more Smart Citations

Digital Security Governance

Schinagl

View full text Add to dashboard Cite

This dissertation focuses on the phenomenon of Digital Security Governance (DSG), highlighting how “digital security” has emerged as an ongoing strategic concern for contemporary organizations. The objective of this dissertation is to provide theoretical and empirical understanding of the currently under-researched aspects of the DSG phenomenon, i.e., what goes on in the implementation of DSG, how DSG can learn from related fields, and how DSG can be governed to become effective in countering the increasing occurrence of cyber failures. The research aggregated in this dissertation advances knowledge and understanding regarding DSG in multiple ways. The literature review in Chapter 2 reveals a fundamental call for a need for change "from the basement to the boardroom." In an ever-increasing digital and technology-driven world, DSG is a strategic concern that affects the long-term success of organizations at the organizational-wide level. Chapters 3 and 4 provide a thorough understanding of "why" organizations fail to establish successful security governance. Chapters 3-5 together provide direction for answering the research question on "how" organizations can effectively implement and govern security governance approaches in today's ever-changing digital landscapes.

show abstract

Section: Theoretical Background: Digital Security Governance 1backgro...mentioning

confidence: 99%

Section: Theoretical Background: Digital Security Governance 1backgro...mentioning

confidence: 99%

Section: Contribution and Chaptersmentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

See 3 more Smart Citations

Digital Security Governance

Schinagl

View full text Add to dashboard Cite

show abstract

Digital Technologies in the Security of the National Economy Under Constraints: Analysis of Experience and Perspectives for Adaptation

Feofilova

Alekseeva²,

Imani

et al. 2023

Digital Transformation on Manufacturing, Infrastructure &Amp; Service

View full text Add to dashboard Cite

Analysis of Digital Security Governance under the Objectives of Digital Ecology: A Three-Party Evolutionary Game Approach

Tian,

Jiang,

Yue

2024

Complexity

View full text Add to dashboard Cite

With the rapid development of the digital economy, there has been an explosion in the amount of data generated. Data have become a vital resource for nations, just as tangible assets and human capital are crucial factors of production. Consequently, protecting digital security has become paramount. However, the increasing frequency of various data security incidents in recent years has exposed issues such as inadequate platform governance, lack of government regulation, and incomplete digital security governance (DSG) mechanisms. This study aims to create a healthy and open digital ecosystem and proposes a new digital security governance framework. It subdivides traditional government departments into local governments and the central government. Together with third-party platforms, they are analyzed as participants in an evolutionary game. The study examines the evolutionary stability of strategy choices made by each party and explores the relationship between key factors such as negative externalities, data security incident probabilities, and their impacts on strategy selection using numerical simulations. The research findings indicate the following. (1) Key parameters such as implicit benefits, government subsidies, and negative externalities play a significantly positive role in the development of the digital ecosystem. (2) The central government consistently tends towards emergency response, considering the overall societal perspective, as long as it is capable of bearing the costs. (3) Local governments may exhibit free-riding behavior during the governance process. To address this, it is important to increase the willingness of third-party platforms to govern and oversee the participation of local governments, which is an effective way to prevent data crises. The study also identifies different governance models in various environments: (1) a digital security governance model in a stable market environment, involving increased central government intervention and supervision of local governments’ participation; and (2) a digital security governance model in the event of a data crisis, where the central government establishes subsidies that exceed the governance costs of local governments to enhance the willingness of third-party platforms to govern. Finally, recommendations and strategies are presented to enhance the level of digital security governance.

show abstract

Paradoxical tensions in the implementation of digital security governance: Toward an ambidextrous approach to governing digital security

Cited by 4 publications

References 32 publications

Digital Security Governance

Digital Security Governance

Digital Technologies in the Security of the National Economy Under Constraints: Analysis of Experience and Perspectives for Adaptation

Analysis of Digital Security Governance under the Objectives of Digital Ecology: A Three-Party Evolutionary Game Approach

Contact Info

Product

Resources

About