STRENGTHENING WORKPLACE CYBER RESILIENCE: BRIDGING THE DIVIDE BETWEEN PERCEPTION AND REALITY
ავტორი: Kgantshe Tau, Rodney Mushininga
ორგანიზაცია: Mancosa; School of Information Technology, The Independent Institute of Education, IIEMSA
კატეგორია:
საკვანძო სიტყვები: Cyber Resilience, Cybersecurity, Perception of Cyber Resilience, Training and Retention Strategies, Cyber reliance Framework and Practices
აბსტრაქტი. As digital transformation accelerates across industries, effective cyber resilience is paramount for maintaining business operations amid evolving cyber threats. The challenge is that the current research shows a lack of alignment between executive perceptions of preparedness and realities assessed by technical teams. To address this perception gap and strengthen organizational cyber resilience, this paper explores challenges and opportunities across key dimensions. A literature review reveals workforce development as a strategic priority. While some studies emphasize crisis management training, retention strategies are also vital for maintaining skilled cybersecurity talent over the long term. Disconnects also exist between conceptual frameworks and practical implementation, highlighting the need for shared understanding across leadership and practitioners. Standardized metrics are likewise needed to benchmark resilience effectiveness within and across sectors.
The paper utilizes a quantitative survey design to collect data from business leaders and cybersecurity professionals. Targeting these stakeholder groups from diverse industries facilitates statistically analyzing relationships between variables like training effectiveness and perception gaps. Key findings reveal notable perception gaps between leadership and technical roles regarding readiness. Training programs also exhibit uneven implementation and impact. Workforce retention efforts lack awareness, suggesting room for improvement. Frameworks receive mixed feedback on consistency and adaptability to technological change. To bridge divides, a holistic strategy is recommended encompassing unified understanding and planning; dynamic training and innovative retention; agile frameworks integrating emerging technologies; and cross-sector collaboration on standards and resilience challenges. Addressing these gaps through coordinated multi-stakeholder efforts can strengthen organizational cyber resilience to match today's threat environment. Continuous learning also remains vital as digital risks rapidly evolve. By shedding light on current challenges through research, this paper aims to facilitate more robust and adaptive approaches for enhancing workplace cyber resilience in the digital age.
ბიბლიოგრაფია
Bagheri, Seyedeh Nasrin, Gail Ridley, and Belinda R. Williams. "Organisational Cyber Resilience: Management Perspectives." Australasian Journal of Information Systems 27 (2023). https://doi.org/10.3127/ajis.v27i0.4183
Carías, Juan F., Saioa Arrizabalaga, Leire Labaka, and Javier Hernantes. "Cyber Resilience Self-Assessment Tool (CR-SAT) for SMEs." IEEE Access 9 (2021): 80741-80762
Cisco. "What Is Cyber Resilience?" Last modified 2024. Accessed June 11, 2024. https://www.cisco.com/c/en/us/solutions/hybrid-work/what-is-cyber-resilience.html
Dupont, Benoît, Clifford Shearing, Maxime Bernier, and Rutger Leukfeldt. "The Tensions of Cyber-Resilience: From Sensemaking to Practice." Computers & Security 132 (2023): 103372. https://doi.org/10.1016/j.cose.2023.103372
Gartner. "Gartner IT Roadmap for Cybersecurity: A Resilient Strategy." Accessed February 17, 2024. https://www.gartner.com/en/cybersecurity/trends/the-it-roadmap-for-cybersecurity/
Hausken, Kjell. "Cyber Resilience in Firms, Organizations and Societies." Internet of Things 12 (2020): 100212
IBM. "What is Cyber Resilience?" Last modified 2024. Accessed June 11, 2024. https://www.ibm.com/topics/cyber-resilience
ISACA. "Cyber Resilience: Principles of Planning, Preparation, and Recovery." Last modified 2020. Accessed April 6, 2024. https://www.isaca.org/resources/cyber-resilience
ISACA. "Cybersecurity Skills in Africa." Last modified 2020. Accessed April 6, 2024. https://www.isaca.org/resources/cybersecurity-skills-in-africa
Kott, Alexander, and Igor Linkov. "To Improve Cyber Resilience, Measure It." IEEE Computer 54, no. 2 (February 2021): 80-85
Lee, Jonghyun, and Yeonwoo Kim. "Keeping the Digital Defenders: Factors Influencing Cybersecurity Employee Retention Strategies." Cybersecurity 4, no. 1 (2021): 22. https://doi.org/10.1186/s42400-021-00075-z
Mahmood, Sadaf, Muhammad Chadhar, and Steven Firmin. "Digital Resilience Framework for Managing Crisis: A Qualitative Study in the Higher Education and Research Sector." Journal of Contingencies and Crisis Management 32 (2024): e12549. https://doi.org/10.1111/1468-5973.12549
Microsoft. "The Future of Cybersecurity: Best Practices for Small Businesses." Last modified 2020. Accessed March 25, 2024. https://www.microsoft.com/en-us/security/business/cybersecurity-awareness
"Modernising the Definition of Resilience." Driven. Accessed February 23, 2024. https://home.hellodriven.com/articles/what-is-resilience-modernising-the-definition-of-resilience/
Mutune, George. "The Cyber Resilience Act (CRA): A Supplement to the NIS 2 Directive." LinkedIn. Last modified 2022. Accessed April 2, 2024. https://www.linkedin.com/pulse/cyber-resilience-act-cra-supplement-nis-2-directive-george-mutune-nxxwf/
Nguyen, Hieu, and Phuong Tran. "Towards Standardized Cyber Resilience Metrics: A Comparative Analysis and Framework Proposal." Journal of Cybersecurity Advances 4, no. 1 (2021): 34-47
Okta. "The State of Zero Trust Security 2021 Report." Last modified June 2021. Accessed March 25, 2024. https://www.okta.com/sites/default/files/2021-06/The-State-of-Zero-Trust-Security-2021-Report.pdf
Ouma, Stephen, Christopher Okello-Obura, and Laura Yoder. "Cybersecurity Skills in Africa’s Development." Issues in Technology Innovation. Last modified 2020. Accessed April 2, 2024. https://www.brookings.edu/research/cybersecurity-skills-in-africas-development/
Patel, Rakesh, and Linda Jackson. "Enhancing Cybersecurity Resilience through Workforce Development and Retention." Technology and Workforce Dynamics 5, no. 2 (2023): 112-124
Pieterse, Heloise. "The Cyber Threat Landscape in South Africa: A 10-Year Review." The African Journal of Information and Communication (AJIC) 28 (2021). https://doi.org/10.23962/10539/32213
Menu