Get 20M+ Full-Text Papers For Less Than $1.50/day. Start a 14-Day Trial for You or Your Team.

Learn More →

Strategy and organisational cybersecurity: a knowledge-problem perspective

Strategy and organisational cybersecurity: a knowledge-problem perspective The purpose of this paper is to frame organisational cybersecurity through a strategic lens, as a function of an interplay of pragmatism, inference, holism and adaptation. The authors address the hostile epistemic climate for intellectual capital management presented by the dynamics of cybersecurity as a phenomenon. The drivers of this hostility are identified and their implications for research and practice are discussed.Design/methodology/approachThe philosophical foundations of cybersecurity in its relation with strategy, knowledge and intellectual capital are explored through a review of the literature as a mechanism to contribute to the emerging theoretical underpinnings of the cybersecurity domain.FindingsThis conceptual paper argues that a knowledge-based perspective can serve as the necessary platform for a phenomenon-based view of organisational cybersecurity, given its multi-disciplinary nature.Research limitations/implicationsBy recognising the knowledge-related vectors, mechanisms and tendencies at play, a novel perspective on the topic can be developed: cybersecurity as a “knowledge problem”. In order to facilitate such a perspective, the paper proposes an emergent epistemology, rooted in systems thinking and pragmatism.Practical implicationsIn practice, the knowledge-problem narrative can underpin the development of new organisational support constructs and systems. These can address the distinctiveness of the strategic challenges that cybersecurity poses for the growing operational reliance on intellectual capital.Originality/valueThe research narrative presents a novel knowledge-based analysis of organisational cybersecurity, with significant implications for both interdisciplinary research in the field, and practice. http://www.deepdyve.com/assets/images/DeepDyve-Logo-lg.png Journal of Intellectual Capital Emerald Publishing

Strategy and organisational cybersecurity: a knowledge-problem perspective

Download PDF
17 pages

Loading next page...
 
/lp/emerald-publishing/strategy-and-organisational-cybersecurity-a-knowledge-problem-DFxC2jysZf
Publisher
Emerald Publishing
Copyright
© Emerald Publishing Limited
ISSN
1469-1930
DOI
10.1108/jic-03-2019-0041
Publisher site
See Article on Publisher Site

Abstract

The purpose of this paper is to frame organisational cybersecurity through a strategic lens, as a function of an interplay of pragmatism, inference, holism and adaptation. The authors address the hostile epistemic climate for intellectual capital management presented by the dynamics of cybersecurity as a phenomenon. The drivers of this hostility are identified and their implications for research and practice are discussed.Design/methodology/approachThe philosophical foundations of cybersecurity in its relation with strategy, knowledge and intellectual capital are explored through a review of the literature as a mechanism to contribute to the emerging theoretical underpinnings of the cybersecurity domain.FindingsThis conceptual paper argues that a knowledge-based perspective can serve as the necessary platform for a phenomenon-based view of organisational cybersecurity, given its multi-disciplinary nature.Research limitations/implicationsBy recognising the knowledge-related vectors, mechanisms and tendencies at play, a novel perspective on the topic can be developed: cybersecurity as a “knowledge problem”. In order to facilitate such a perspective, the paper proposes an emergent epistemology, rooted in systems thinking and pragmatism.Practical implicationsIn practice, the knowledge-problem narrative can underpin the development of new organisational support constructs and systems. These can address the distinctiveness of the strategic challenges that cybersecurity poses for the growing operational reliance on intellectual capital.Originality/valueThe research narrative presents a novel knowledge-based analysis of organisational cybersecurity, with significant implications for both interdisciplinary research in the field, and practice.

Journal

Journal of Intellectual CapitalEmerald Publishing

Published: Oct 1, 2019

Keywords: Strategy; Complexity; Epistemology; Intellectual capital; Systems theory; Knowledge-problem; Cybersecurity theory

References

  • Complexity and the limits to learning
    Allen, P.M.; Strathern, M.; Baldwin, J.S.
  • Assessing the dynamic capabilities view: spare change, everyone?
    Arend, R.J.; Bromiley, P.
  • Ashley Madison: ‘Suicides’ over website hack [online]
    Baraniuk, C.
  • Toward a complexity theory of information systems development
    Benbya, H.; McKelvey, B.
  • Using coevolutionary and complexity theories to improve is alignment: a multi-level approach
    Benbya, H.; McKelvey, B.
  • Knowledge and organization: a social-practice perspective
    Brown, J.S.; Duguid, P.
  • Confronting deep uncertainties in risk analysis
    Cox, L.A.T.
  • The knowledge-based view of the firm and its theoretical precursor
    Curado, C.; Bontis, N.
  • Whatever happened to knowledge management
    Davenport, T.H.
  • The third stage of IC: towards a new IC future and beyond
    Dumay, J.
  • A critical reflection on the future of intellectual capital: from reporting to disclosure
    Dumay, J.
  • Intellectual capital research: a critical examination of the third stage
    Dumay, J.; Garanina, T.
  • Is knowledge management losing Ground&Quest; developments among icelandic SMEs
    Edvardsson, I.R.
  • Dynamic capabilities: what are they?
    Eisenhardt, K.M.; Martin, J.A.
  • EU Cybersecurity plan to protect open internet and online freedom and opportunity – cyber security strategy and proposal for a directive
  • Cyber situational awareness – a systematic review of the literature
    Franke, U.; Brynielsson, J.
  • The economic incentives for sharing security information
    Gal-Or, E.; Ghose, A.
  • The implications of interactions for science and philosophy
    Gershenson, C.
  • On narrow norms and vague heuristics: a reply to Kahneman and Tversky
    Gigerenzer, G.
  • Homo heuristicus: why biased minds make better inferences
    Gigerenzer, G.; Brighton, H.
  • Exaptation – a missing term in the science of form
    Gould, S.J.; Vrba, E.S.
  • Cybersecurity Bill’s Backers cite antivirus firms’ bogus cybercrime stats
    Greenberg, A.
  • Reflections and projections: a decade of intellectual capital accounting research
    Guthrie, J.; Ricceri, F.; Dumay, J.
  • The ‘Soft’ dimension of organizational knowledge transfer
    Guzman, G.A.C.; Wilson, J.
  • On the complex quantification of risk: systems-based perspective on terrorism
    Haimes, Y.Y.
  • Systems-based guiding principles for risk modeling, planning, assessment, management, and communication
    Haimes, Y.Y.
  • Understanding the complexity of economic, ecological, and social systems
    Holling, C.S.
  • Unpacking knowledge management: management fad or real business practice?
    Ibrahim, F.; Reid, V.
  • Understanding and overcoming cyber security anti-patterns
    Julisch, K.
  • The birth of cyberwar
    Kaiser, R.
  • The interaction of intellectual capital assets and knowledge management practices in organizational value creation
    Kianto, A.; Ritala, P.; Spender, J.-C.; Vanhala, M.
  • Human and organizational factors in computer and information security: pathways to vulnerabilities
    Kraemer, S.; Carayon, P.; Clem, J.
  • The cybercrime ecosystem: online innovation in the shadows?
    Kraemer-Mbula, E.; Tang, P.; Rush, H.
  • Niche construction, biological evolution, and cultural change
    Laland, K.N.; Odling-Smee, J.; Feldman, M.W.
  • What is complexity science?
    McKelvey, B.
  • Simplifying complexity: a review of complexity theory
    Manson, S.M.
  • Rationality, foolishness, and adaptive intelligence
    March, J.G.
  • Why do humans reason? Arguments for an argumentative theory
    Mercier, H.; Sperber, D.
  • Risk, uncertainty, and heuristics
    Mousavi, S.; Gigerenzer, G.
  • Managing corporate risk through better knowledge management
    Neef, D.
  • Objectivity and subjectivity in knowledge management: a review of 20 top articles
    Nonaka, I.; Peltokorpi, V.
  • Most companies take over six months to detect data breaches
    Osbourne, C.
  • Knowledge claim evaluation: a fundamental issue for knowledge management
    Peters, K.; Maruster, L.; Jorna, R.J.
  • Leveraging behavioral science to mitigate cyber security risk
    Pfleeger, S.L.; Caputo, D.D.
  • Cyberspace: the ultimate complex adaptive system
    Phister, P.W.
  • The philosophy of strategy
    Powell, T.C.
  • The social construction of nature: relativist accusations, pragmatist and critical realist responses
    Proctor, J.D.
  • Knowledge management and measurement: a critical review
    Ragab, A.F.M.; Arisha, A.
  • The professionalisation of information security: perspectives of UK practitioners
    Reece, R.P.; Stahl, B.C.
  • A simple guide to chaos and complexity
    Rickles, D.; Hawe, P.; Shiell, A.
  • Attributing cyber attacks
    Rid, T.; Buchanan, B.
  • Examining the costs and causes of cyber incidents
    Romanosky, S.
  • IS risk analysis: a chaos theoretic perspective
    Sharma, S.; Dhillon, G.
  • Incorporating a knowledge perspective into security risk assessments
    Shedden, P.; Scheepers, R.; Smith, W.; Ahmad, A.
  • Affect, risk, and decision making
    Slovic, P.; Peters, E.; Finucane, M.L.; MacGregor, D.G.
  • Framing dependencies introduced by underground commoditization
    Thomas, K.; Yuxing, D.; David, H.; Elie, W.; Grier, B.C.
  • Cybersecurity: challenges from a systems complexity knowledge management and business intelligence perspective
    Tisdale, S.M.
  • Judgment under uncertainty: heuristics and biases
    Tversky, A.; Kahneman, D.
  • Cyber security strategy of the United Kingdom
  • The UK Cyber security strategy: protecting and promoting the UK in a digital world
  • Executive order – promoting private sector cybersecurity information sharing
  • The nonsense of ‘Knowledge Management’
    Wilson, T.D.
  • Absorptive capacity: a review, reconceptualization, and extension
    Zahra, S.A.; George, G.
  • Inside the cunning, unprecedented hack of Ukraine’s power grid
    Zetter, K.
  • Organizational unlearning and organizational relearning: a dynamic process of knowledge management
    Zhao, Y.; Lu, Y.; Wang, X.
  • Information sharing in oligopoly: the truth-telling problem
    Ziv, A.
  • Breaching intellectual capital: critical reflections on Big Data security
    La Torre, M.; Dumay, J.; Rea, M.A.
  • Information systems strategy: past, present, future?
    Merali, Y.; Papadopoulos, T.; Nadkarni, T.