IDEAS home Printed from https://ideas.repec.org/a/gam/jrisks/v11y2023i6p101-d1160331.html
   My bibliography  Save this article

Context-Based and Adaptive Cybersecurity Risk Management Framework

Author

Listed:
  • Henock Mulugeta Melaku

    (School of Information Technology and Engineering, Addis Ababa Institute of Technology, Addis Ababa University, Addis Ababa 1000, Ethiopia)

Abstract

Currently, organizations are faced with a variety of cyber-threats and are possibly challenged by a wide range of cyber-attacks of varying frequency, complexity, and impact. However, they can do something to prevent, or at least mitigate, these cyber-attacks by first understanding and addressing their common problems regarding cybersecurity culture, developing a cyber-risk management plan, and devising a more proactive and collaborative approach that is suitable according to their organization context. To this end, firstly various enterprise, Information Technology (IT), and cybersecurity risk management frameworks are thoroughly reviewed along with their advantages and limitations. Then, we propose a proactive cybersecurity risk management framework that is simple and dynamic, and that adapts according to the current threat and technology landscapes and organizational context. Finally, performance metrics to evaluate the framework are proposed.

Suggested Citation

  • Henock Mulugeta Melaku, 2023. "Context-Based and Adaptive Cybersecurity Risk Management Framework," Risks, MDPI, vol. 11(6), pages 1-22, May.
    • Handle: RePEc:gam:jrisks:v:11:y:2023:i:6:p:101-:d:1160331
    as

    Download full text from publisher

    File URL: https://www.mdpi.com/2227-9091/11/6/101/pdf
    Download Restriction: no
    File URL: https://www.mdpi.com/2227-9091/11/6/101/
    Download Restriction: no
    ---><---

    References listed on IDEAS

    as
    1. Lee, In, 2021. "Cybersecurity: Risk management framework and investment cost analysis," Business Horizons, Elsevier, vol. 64(5), pages 659-671.
    2. In Lee, 2020. "Internet of Things (IoT) Cybersecurity: Literature Review and IoT Cyber Risk Management," Future Internet, MDPI, vol. 12(9), pages 1-21, September.
    Full references (including those not matched with items on IDEAS)

    Citations

    Citations are extracted by the CitEc Project, subscribe to its RSS feed for this item.
    as


    Cited by:

    1. Antczak Joanna, 2024. "Determinants of business management in the digital age," International Journal of Contemporary Management, Sciendo, vol. 60(1), pages 17-26, March.

    Most related items

    These are the items that most often cite the same works as this one and are cited by the same works as this one.
    1. Agbodoh-Falschau, Kouassi Raymond & Ravaonorohanta, Bako Harinivo, 2023. "Investigating the influence of governance determinants on reporting cybersecurity incidents to police: Evidence from Canadian organizations’ perspectives," Technology in Society, Elsevier, vol. 74(C).
    2. Corinna Köpke & Jennifer Mielniczek & Christoph Roller & Kerstin Lange & Frank Sill Torres & Alexander Stolz, 2023. "Resilience management processes in the offshore wind industry: schematization and application to an export-cable attack," Environment Systems and Decisions, Springer, vol. 43(2), pages 161-177, June.
    3. Mohammed Balfaqih & Soltan Abed Alharbi, 2022. "Associated Information and Communication Technologies Challenges of Smart City Development," Sustainability, MDPI, vol. 14(23), pages 1-27, December.
    4. Ben Kejwang, 2022. "Effect of cybersecurity risk management practices on performance of insurance sector: A review of literature," International Journal of Research in Business and Social Science (2147-4478), Center for the Strategic Studies in Business and Finance, vol. 11(6), pages 334-340, September.
    5. Traian Mihai Popescu & Alina Madalina Popescu & Gabriela Prostean, 2021. "IoT Security Risk Management Strategy Reference Model (IoTSRM2)," Future Internet, MDPI, vol. 13(6), pages 1-43, June.
    6. Saif Hussein Abdallah Alghazo & Norshima Humaidi & Shereen Noranee, 2023. "Assessing Information Security Competencies of Firm Leaders towards Improving Procedural Information Security Countermeasure: Awareness and Cybersecurity Protective Behavior," Information Management and Business Review, AMH International, vol. 15(1), pages 1-13.
    7. Philippe Funk, 2022. "Artificial Intelligence And Cybersecurity Implications For Business Management," Economy & Business Journal, International Scientific Publications, Bulgaria, vol. 16(1), pages 252-261.
    8. Tong Chen & Mo Wang & Jin Su & Rana Muhammad Adnan Ikram & Jianjun Li, 2023. "Application of Internet of Things (IoT) Technologies in Green Stormwater Infrastructure (GSI): A Bibliometric Review," Sustainability, MDPI, vol. 15(18), pages 1-22, September.

    Corrections

    All material on this site has been provided by the respective publishers and authors. You can help correct errors and omissions. When requesting a correction, please mention this item's handle: RePEc:gam:jrisks:v:11:y:2023:i:6:p:101-:d:1160331. See general information about how to correct material in RePEc.

    If you have authored this item and are not yet registered with RePEc, we encourage you to do it here. This allows to link your profile to this item. It also allows you to accept potential citations to this item that we are uncertain about.

    If CitEc recognized a bibliographic reference but did not link an item in RePEc to it, you can help with this form .

    If you know of missing items citing this one, you can help us creating those links by adding the relevant references in the same way as above, for each refering item. If you are a registered author of this item, you may also want to check the "citations" tab in your RePEc Author Service profile, as there may be some citations waiting for confirmation.

    For technical questions regarding this item, or to correct its authors, title, abstract, bibliographic or download information, contact: MDPI Indexing Manager (email available below). General contact details of provider: https://www.mdpi.com .

    Please note that corrections may take a couple of weeks to filter through the various RePEc services.

    IDEAS is a RePEc service. RePEc uses bibliographic data supplied by the respective publishers.