ARPHA Conference Abstracts :
Conference Abstract
|
Corresponding author: Veena S Dorairajan (veenasugu@gmail.com)
Received: 08 Jun 2024 | Published: 04 Jul 2024
© 2024 Veena Dorairajan
This is an open access article distributed under the terms of the Creative Commons Attribution License (CC BY 4.0), which permits unrestricted use, distribution, and reproduction in any medium, provided the original author and source are credited.
Citation:
Dorairajan V (2024) Cybersecurity and Organisational Performance – the Interplay. ARPHA Conference Abstracts 7: e129255. https://doi.org/10.3897/aca.7.e129255
|
The interplay between cybersecurity and organisational performance is multifaceted in nature, as it is related to how cybersecurity impacts and is impacted by various organisational activities and performance metrics. In the age of the rapid digitalization of organisations, cybersecurity emerges as an integral part of the health and effectiveness of an organisation. It includes not only preserving the confidentiality, integrity, availability of organisational digital assets but also establishing the organisational cybersecurity culture and, consequently, human behaviour. Cybersecurity and business are interdependent influencing each other significantly. This interplay shapes modern business.
The convergence of people, procedures, and technology to defend business, persons, or networks against digital attacks is known ascybersecurity. Cybersecurity is essential to protect organisational assets from risks such as but not limited to personal data breaches, unauthourised access leading to reputational and financial impact (
Organisations that decide to implement digital technologies as part of their digital transformation journey are faced with increasing cyber threats and need to implement a reliable form of defence to protect their operations. In addition to digital transformation, organisations around the world are adopting artificial intelligence in their business process to reduce operating costs, boost productivity and improve customer experience. This introduces newer threats around artificial intelligence such as adversial AI attacks which involves attack vectors such as model poisoning. Artificial intelligence enabled cyber-attacks are also increasing and are contributing to the ever evolving complex threat landscape. Digital transformation and cybersecurity are intertwined elements crucial to today’s business. The strategic management of cybersecurity involves comprehensive understanding and measures against cybercrime, attacks, and terrorism to ensure organisational and business sustainability during digital transformation (
Effective cybersecurity management enhances business operations and reputation (
Digital technologies shape the organisational design and brings cultural change. Digital transformation introduces cybersecurity challenges that necessitate a culture shift towards greater security awareness within organisations (
Cybersecurity must be managed strategically within an organisation to optimize performance and mitigate risks. This involves integrating cybersecurity into business strategy, recognizing it as a dynamic field that requires continuous adaptation and management. In short, cybersecurity strategy must align with business strategy and IT strategy. By integrating cybersecurity into the strategy and cultural fabric, organisations can increase their cyber resilience. The strategic approach of an organisation significantly influences its cybersecurity landscape. Firms focusing on innovation often face greater cybersecurity risks due to decentralized control systems and a variety of technologies that may introduce vulnerabilities. Conversely, efficiency-focused businesses may have more centralized and potentially more secure systems, though they also need to adapt to evolving cyber threats.
Effective cybersecurity practices are crucial for maintaining organisational integrity and performance. Cybersecurity influences various performance metrics, including risk management, compliance, and even financial performance.
Is there a connection between cyber security adoption and organisational performance? The organisation’s internal and external environmental elements need to be considered when studying the impact of the adoption of cybersecurity technologies. The three variables technology, organisation, and environment are used to identify the factors that affect on cybersecurity adoption. The technology-organisation-environment framework, referred to as the TOE framework, can be used for this analysis. Technological context considers the tenability, relative advantage, return on investment, cost, complexity, and compatibility. Organisational context considers the willingness to adopt, organisational readiness, knowledge and expertise, external support, communication process, and top management support. The environmental context considers competitiveness, external pressure, geopolitics and external events, fear of exposure, experience and laws and regulations.
In environments where system performance is prioritized over security, there might be a tendency to allocate fewer resources to security measures. This can leave systems more vulnerable to attacks. Rapidly deploying new features or updates to meet performance targets can sometimes lead to overlooking security best practices or conducting inadequate testing, creating potential vulnerabilities. Moving to the cloud and using third party services for improved performance also can increase the security risks if these services are not adequately vetted and managed.
The Security-Performance Tradeoff Model is a concept in cybersecurity that recognizes the balance between security measures that need to be implemented and the system performance that organisations need to maintain constantly. This model is important because both cybersecurity and the systems’ performance can influence organisations’ performance in terms of reputation, acceptance, etc. The Security-Performance Tradeoff Model is focused on the idea that there is usually a trade-off between cybersecurity and systems performance, and organisations need to manage a balance. It suggests that in some cases, the highest security levels can lower system performance, and vice versa. Organisations need to strike an appropriate balance by implementing tailored solutions that meet their security requirements without compromising operational efficiency or user experience.
The following approaches can be adopted to manage the trade-off:
Veena S Dorairajan
The Art and Science of Managing Performance” symposium, held on February 29th 2024, co-organized by Ascencia Center for Applied Business & Management Research (CABMR - France) and Gisma University for Applied Sciences (Germany), in collaboration with the Association for University Business & Economic Research (AUBER, United States).
Ascencia Business School, Collège de Paris, International Campus, Paris - La Défense.