Skip to main content

Journal of Operational Risk

ISSN:

1755-2710 (online)

Editor-in-chief: Marcelo Cruz

Impact Factor: 0.8

First Published: March 2006

Risk.net

The role of business and IT alignment in cyber security risk management

Samir Jarjoui, Julia A. Fulmore, Mona Lisa Pinkney and Renita Murimi

Need to know

  • Traditional cybersecurity risk mitigation approaches continue to lag behind the evolving ‘threat’ landscape and technology trends.
  • Existing risk management frameworks do not provide much guidance on how organizations should identify a relevant context to manage risks.
  • A holistic multi-dimensional approach enhances cybersecurity risk management by integrating strategic, structural, and social aspects.
  • The outlined empirical model offers a framework for future research and practical implementation, highlighting the interconnectedness of organizational-level dimensions and cybersecurity risks.

Abstract

Cyber risk management (CRM) faces significant challenges, with cyber attacks increasing despite substantial investment. Traditional risk management approaches often fail due to their siloed nature, which does not holistically align cyber security with business and information technology functions. Using systems theory, this study looks at the role of business and information technology alignment (BITA) in enhancing CRM. It examines six dimensions of BITA that influence CRM and offers a blueprint for future research and practical implementation that integrates BITA with CRM, proposing that strategic planning, governance and shared knowledge are crucial for improving it.

Copyright Infopro Digital Limited. All rights reserved.

As outlined in our terms and conditions, https://www.infopro-digital.com/terms-and-conditions/subscriptions/ (point 2.4), printing is limited to a single copy.

If you would like to purchase additional rights please email info@risk.net

Copyright Infopro Digital Limited. All rights reserved.

You may share this content using our article tools. As outlined in our terms and conditions, https://www.infopro-digital.com/terms-and-conditions/subscriptions/ (clause 2.4), an Authorised User may only make one copy of the materials for their own personal use. You must also comply with the restrictions in clause 2.5.

If you would like to purchase additional rights please email info@risk.net

Sorry, our subscription options are not loading right now

Please try again later. Get in touch with our customer services team if this issue persists.

New to Risk.net? View our subscription options

Browse journals

Journal of Computational Finance
Journal of Credit Risk
Journal of Energy Markets
Journal of Financial Markets Infrastructures
Journal of Investment Strategies
Journal of Network theory in Finance
Journal of Operational Risk
Journal of Risk
Journal of Risk Model Validation

You need to sign in to use this feature. If you don’t have a Risk.net account, please register for a trial.

Sign in
You are currently on corporate access.

To use this feature you will need an individual account. If you have one already please sign in.

Sign in.

Alternatively you can request an individual account here