There is a long-standing claim that cybersecurity and digital information system protection is primarily a technological issue falling into the information technology domain. However, empirical evidence demonstrates that human and behavioural factors are usually the main vulnerability causing cybersecurity accidents. This chapter examines the role of the human capital of being both a vulnerability and strength in cybersecurity risk management. It provides recommendations to align firms’ corporate governance and internal control systems to human-related cybersecurity risk.
Human Capital Vulnerability and Cybersecurity Risk Management: An Integrated Approach
Mancini, Daniela
2021-01-01
Abstract
There is a long-standing claim that cybersecurity and digital information system protection is primarily a technological issue falling into the information technology domain. However, empirical evidence demonstrates that human and behavioural factors are usually the main vulnerability causing cybersecurity accidents. This chapter examines the role of the human capital of being both a vulnerability and strength in cybersecurity risk management. It provides recommendations to align firms’ corporate governance and internal control systems to human-related cybersecurity risk.File in questo prodotto:
Non ci sono file associati a questo prodotto.
I documenti in IRIS sono protetti da copyright e tutti i diritti sono riservati, salvo diversa indicazione.
