Business strategy analysis of cybersecurity incidents

Investor logo

Warning

This publication doesn't include Faculty of Economics and Administration. It includes Faculty of Law. Official publication website can be found on muni.cz.
Authors

SZÁDECZKY Tamás BEDERNA Zsolt RAJNAI Zoltan

Year of publication 2021
Type Article in Periodical
Magazine / Source Land Forces Academy Review
MU Faculty or unit

Faculty of Law

Citation
Web https://www.armyacademy.ro/reviste/rev2_2021/Art_Bederna_Rajnai_Szadeczky.pdf
Keywords cybersecurity; cybersecurity capabilities; cybersecurity strategy
Description In the current social and economic processes, information and communication services play a decisive role, changing several entities’ operations. The growing dependence that has developed over the last two decades made the security needs introduced political will, which has resulted in an iterative evolution of the regulatory environment. Hence, the legal framework requires that several entities develop protection that includes controls enhancing both preventive and reactive in a risk-proportionate manner under the business value to be protected. Nevertheless, due to the nature of cybersecurity, the development of such capabilities is not the task of a single organisation but all entities involved in cyberspace, including, e.g., individuals, non-profit and for-profit organisations, public sector actors. Therefore, each involved entity should design protection capabilities in a risk-proportionate manner, which requires strategic approaches and tools and requires organisations to learn from security incidents. This paper reviews the essential formal security strategy formulation tools, applying in the Facebook’s case based on publicly available information. The analysis aims to confirm the importance of management’s attitude and support for tackling cybersecurity’s challenges
Related projects:

You are running an old browser version. We recommend updating your browser to its latest version.