To read this content please select one of the options below:

Impact of the assertive and advisory role of internal auditing on proactive measures to enhance cybersecurity: evidence from GCC

Hamada Elsaid Elmaasrawy (Department of Accounting, Faculty of Commerce, Tanta University, Tanta, Egypt)
Omar Ikbal Tawfik (Department of Accounting, Dhofar University, Salalah, Oman)

Journal of Science and Technology Policy Management

ISSN: 2053-4620

Article publication date: 22 March 2024

133

Abstract

Purpose

This paper aims to examine the impact of the assurance and advisory role of internal audit (ADRIA) on organisational, human and technical proactive measures to enhance cybersecurity (CS).

Design/methodology/approach

The questionnaire was used to collect data for 97 internal auditors (IAu) from the Gulf Cooperation Council countries. The authors used partial least squares (PLS) to test the hypotheses.

Findings

The results show a positive effect of the ADRIA on each of the organisational proactive measures, human proactive measures and technical proactive measures to enhance CS. The study also found a positive effect of the confirmatory role of IA on both human proactive measures and technical proactive measures to enhance CS. No effect of the confirmatory role of IA on the organisational proactive measures is found.

Research limitations/implications

This study focused on only three proactive measures to enhance CS, and this study was limited to the opinions of IAu. In addition, the study was limited to using regression analysis according to the PLS method.

Practical implications

The results of this study show that managers need to consider the influential role of IA as a value-adding activity in reducing CS risks and activating proactive measures. Also, IAu must expand its capabilities, skills and knowledge in CS auditing to provide a bold view of cyber threats. At the same time, the institutions responsible for preparing IA standards should develop standards and guidelines that help IAu to play assurance and advisory roles.

Originality/value

To the best of the authors’ knowledge, this is the first study of its kind that deals with the impact of the assurance and ADRIA on proactive measures to enhance CS. In addition, the study determines the nature of the advisory role and the assurance role of IA to strengthen CS.

Keywords

Citation

Elmaasrawy, H.E. and Tawfik, O.I. (2024), "Impact of the assertive and advisory role of internal auditing on proactive measures to enhance cybersecurity: evidence from GCC", Journal of Science and Technology Policy Management, Vol. ahead-of-print No. ahead-of-print. https://doi.org/10.1108/JSTPM-01-2023-0004

Publisher

:

Emerald Publishing Limited

Copyright © 2024, Emerald Publishing Limited

Related articles