Search results

Railways are a well-known example of complex critical infrastructure, incorporating socio-technical systems with humans such as drivers, signallers, maintainers and passengers at the core. The technological evolution including interconnectedness and new ways of interaction lead to new security and safety risks that can be realised, both in terms of human error, and malicious and non-malicious behaviour. This study aims to identify the human factors (HF) and cyber-security risks relating to the role of signallers on the railways and explores strategies for the improvement of “Digital Resilience” – for the concept of a resilient railway.

Overall, 26 interviews were conducted with 21 participants from industry and academia.

The results showed that due to increased automation, both cyber-related threats and human error can impact signallers’ day-to-day operations – directly or indirectly (e.g. workload and safety-critical communications) – which could disrupt the railway services and potentially lead to safety-related catastrophic consequences. This study identifies cyber-related problems, including external threats; engineers not considering the human element in designs when specifying security controls; lack of security awareness among the rail industry; training gaps; organisational issues; and many unknown “unknowns”.

The authors discuss socio-technical principles through a hexagonal socio-technical framework and training needs analysis to mitigate against cyber-security issues and identify the predictive training needs of the signallers. This is supported by a systematic approach which considers both, safety and security factors, rather than waiting to learn from a cyber-attack retrospectively.

The Kingdom of Saudi Arabia (KSA) is embracing digital transformation and e-government services, aiming to improve efficiency, accessibility and citizen-centricity. Nonetheless, the country faces challenges such as evolving cyber threats. The purpose of this study is to investigate the factors influencing cybersecurity practices to ensure the reliability and security of e-government services.

This paper investigates the multifaceted dynamics of cybersecurity practices and their impact on the quality and effectiveness of e-government services. Five key factors explored include organizational culture, technology infrastructure, adherence to standards and regulations, employee training and awareness and financial investment in cybersecurity. This study used a quantitative method to gather data from 320 participants. The researcher collected 285 completed questionnaires, excluding unusable or incomplete responses, and analyzed the final data set using partial least squares structural equation modeling.

The findings show that financial investment in cybersecurity, employee training and awareness and adherence to cybersecurity regulations significantly influence the adoption of robust cybersecurity practices. However, the relationship between organizational culture and cybersecurity practices is less straightforward. The research establishes a strong positive correlation between cybersecurity practices and e-government service quality, highlighting the role of security in fostering public trust and user satisfaction and meeting the evolving needs of citizens and businesses.

This research contributes valuable empirical evidence to the fields of e-government and cybersecurity, offering insights that can inform evidence-based policy decisions and resource allocation. By understanding the nuanced dynamics at play, Saudi Arabia is better poised to fortify its digital governance infrastructure and provide secure, high-quality e-government services to its constituents.

The Central Bank of Nigeria (CBN) recently relaunched Nigeria’s cashless policy initiative which seeks to reduce financial crime and tax avoidance, decrease cash dependency, advance the adoption of digital financial services (DFS), decrease the risks to the payment system and foster financial inclusion. This study aims to identify the unique challenges of going cashless in Nigeria, particularly in terms of infrastructural, exclusionary and cost implications of the policy on the average citizens.

The author applies a doctrinal research methodology to identify and reflect on key challenges of the cashless policy from the economic, regulatory and transactional perspectives.

The cashless policy initiative in Nigeria heralds value for financial integrity, financial policy regulation and user convenience. The mode of introduction, however, ushers in significant challenges and hardly considers Nigeria’s inadequate payment infrastructure, persistent financial exclusion, low levels of financial and digital literacy and capability, high cost of using DFS and pervasive proclivity for cash. As Nigerians adjust albeit inconveniently to the policy, the CBN can ameliorate the hardship by strengthening the payment infrastructure, particularly for digital payments, fostering consumer trust by safeguarding user funds and enabling consumer preferences.

Research materials include the national regulator’s policy documents and newspaper articles that have not been published in formal reports but non-the-less adequately mirror the policy intention of the CBN and the lived experiences of Nigerians.

This study identifies the practical steps and regulatory measures that the CBN can take to improve acceptance and meaningful and sustainable adoption of the cashless policy by the majority of Nigerians.

The recommendations that are proffered provide some rich insights to inform regulatory direction for the CBN to seamlessly phase-in the cashless policy and consequently drive down financial exclusion in Nigeria.

This study contributes to the policy discussion around the introduction of the cashless Nigeria project. The doctrinal research method highlights the policy intentions of the regulator in juxtaposition with lived experiences of Nigerians. This study offers recommendations to bolster financial inclusion, stability and integrity.

This paper aims to propose a new method to derive custom dynamic cyber risk metrics based on the well-known Goal, Question, Metric (GQM) approach. A framework that complements it and makes it much easier to use has been proposed too. Both, the method and the framework, have been validated within two challenging application domains: continuous risk assessment within a smart farm and risk-based adaptive security to reconfigure a Web application firewall.

The authors have identified a problem and provided motivation. They have developed their theory and engineered a new method and a framework to complement it. They have demonstrated the proposed method and framework work, validating them in two real use cases.

The GQM method, often applied within the software quality field, is a good basis for proposing a method to define new tailored cyber risk metrics that meet the requirements of current application domains. A comprehensive framework that formalises possible goals and questions translated to potential measurements can greatly facilitate the use of this method.

The proposed method enables the application of the GQM approach to cyber risk measurement. The proposed framework allows new cyber risk metrics to be inferred by choosing between suggested goals and questions and measuring the relevant elements of probability and impact. The authors’ approach demonstrates to be generic and flexible enough to allow very different organisations with heterogeneous requirements to derive tailored metrics useful for their particular risk management processes.

By providing an overview of the existing knowledge on public governance in the context of Construction 4.0, this review serves as a valuable resource for researchers, policymakers and practitioners interested in understanding the current state of public governance in the context of Construction 4.0 and identifying avenues for future research and practical implementation.

This article presents a systematic and comprehensive review of the academic literature on public governance in the context of Construction 4.0. To ensure a systematic and rigorous selection of source material, the study adopts the Preferred Reporting Items for Systematic Reviews and Meta-Analyses guidelines.

By examining a wide range of scholarly works, the review identifies and discusses eight recurring themes that are crucial for understanding the role of public governance in Construction 4.0. These themes include policy and regulation, infrastructure and investment, skill development and education, digital inclusion and access, collaboration and partnerships, data governance and privacy, interactions with environmental and societal goals and the impact of Construction 4.0 on public governance itself. The review highlights a significant disparity between the normative debates on the importance of public governance in Construction 4.0 and the empirical knowledge available regarding its practical implementation. While the literature emphasizes the need for effective governance mechanisms to address the challenges and opportunities presented by Construction 4.0, there is a notable lack of empirical research examining the actual implementation and outcomes of public governance strategies.

This is the first systematic review of academic literature on public governance in the context of Construction 4.0.

Business Model Innovation is increasingly created by an ecosystem of related companies. This paper aims to investigate the transition of a manufacturing ecosystem toward electric vehicles from a business model perspective.

The authors investigate an automotive manufacturing ecosystem that is in transition toward electric and electrified vehicles, conducting semi-structured interviews with 46 informants from 27 ecosystem members.

The results reveal that the actions of several ecosystem members are driven by regulations relating to emissions. Novel requirements regarding components and complementary offers necessitate the entry of actors from other industries and the formation of new ecosystem members. While the newly emerged ecosystem has roots in an established ecosystem, it relies on new value offers. Further, the findings highlight the importance of ecosystem governance, while the necessary degree of change in the members' business models depends on their roles and positions in the ecosystem. Therefore, upstream suppliers of components must perform business model adaptation, whereas downstream providers must perform more complex business model innovation.

The paper is among the first to investigate an entire manufacturing ecosystem and analyze its transition toward electric vehicles and the implications for business model innovation.

The purpose of this paper is to explore the current practices in security convergence among and between corporate security and cybersecurity processes in commercial enterprises.

This paper is the first phase in a planned multiphase project to better understand current practices in security optimization efforts being implemented by commercial organizations exploring means and methods to operate securely while reducing operating costs. The research questions being examined are: What are the general levels of interest in cybersecurity and corporate security convergence? How well do the perspectives on convergence align between organizations? To what extent are organizations pursuing convergence? and How are organizations achieving the anticipated outcomes from convergence?

In organizations, the evolution to a more optimized security structure, either merged or partnered, was traditionally due to unplanned or unforeseen events; e.g. a spin-off/acquisition, new security leadership or a negative security incident was the initiator. This is in contrast to a proactive management decision or formal plan to change or enhance the security structure for reasons that include reducing costs of operations and/or improving outcomes to reduce operational risks. The dominant exception was in response to regulatory requirements. Preliminary findings suggest that outcomes from converged organizations are not necessarily more optimized in situations that are organizationally merged under a single leader. Optimization may ultimately depend on the strength of relationships and openness to collaboration between management, cybersecurity and corporate security personnel.

This report and the number of respondents to its survey do not support generalizable findings. There are too few in each category to make reliable predictions and in analysis, there was an insufficient quantity of responses in most categories to allow supportable conclusions to be drawn.

Practitioners may find useful contextual clues to their needs for convergence or in response to directives for convergence from this report on what is found in some other organizations.

Improved effectiveness and/or reduced costs for organizational cybersecurity would be a useful social outcome as organizations become more efficient in the face of increasing levels of cyber security threats.

Convergence as a concept has been around for some time now in both the practice and research communities. It was initially promoted formally by ASIS International and ISACA in 2005. Yet there is no universally agreed-upon definition for the term or the practices undertaken to achieve it. In addition, the business drivers and practices undertaken to achieve it are still not fully understood. If convergence or optimization of converged operations offers a superior operational construct compared to other structures, it is incumbent to discover if there are measurable benefits. This research hopes to define the concept of security collaboration optimization more fully. The eventual goal is to develop and promote a tool useful for organizations to measure where they are on such a continuum.

There is a growing body of literature discussing the green logistics practices (GLPs) that companies could introduce to reduce the logistics environmental impact. Current approaches also identify several influencing factors within firms that could serve as barriers to, or enablers of, GLPs. However, less is known about the role of extra-firm stakeholders, even though these are crucial to operationalizing green logistics effectively. This study merges current theoretical understanding with empirical evidence to provide a detailed stakeholder analysis of GLPs.

Using stakeholder theory as a theoretical lens, the authors aimed at offering a mid-range contribution by conducting multiple embedded case studies examining Italian logistics service providers and shippers. GLPs and the related influencing factors were examined as sub-units of analysis within broader companies' environmental sustainability strategies.

The authors identified cascading effects among factors influencing the adoption of GLPs (e.g. key economic factors are affected by external factors which also influence organizational and collaboration factors). These effects are moderated by interdependencies between primary and secondary stakeholders, and the study highlights the prominent involvement of secondary stakeholders, such as final consumers.

This paper contributes to better understanding how and why companies adopt GLPs, emphasizing the wide set of stakeholders involved and illustrating how different stakeholders impact on GLPs adoption by affecting a set of influencing factors. By combining insights from the available literature with contemporary empirical data, the authors emphasize how Logistics Service Providers (LSPs) and shippers can no longer address the adoption of GLPs as “focal companies”, but only as part of a “focal network of interconnected stakeholders”, all of them influencing GLPs adoption.

Amidst unpredictable and turbulent periods, such as the COVID-19 pandemic, service organization’s responses are required to be innovative, adaptable and resilient. The purpose of this study is to explore the utilization of both reconfiguration and transformational strategies as instruments for cultivating resilience and advancing sustainability in service organizations.

The study examines a proposed resilience model using fuzzy logic. The research also used a semantic differential scale to capture nuanced and intricate attitudes. Finally, to augment the validity of the resilience model, a measurement scale was formulated using business mathematics and expert opinions.

Although investing in resilience training can help organizations gain control and maintain their operations in times of crisis, it may not directly help service organizations understand the external turmoil, seek available resources or create adaptive remedies. Conversely, high levels of reconfiguration and transformation management vigour empower a service organization’s revolutionary, malleable vision, organizational structure and decision-making processes, welcoming talented and innovative employees to enhance capabilities during crises.

The resilience model bestows a comprehensive understanding of the pertinence of building resilience for service organizations identifying the antecedents that influence the adoption of these strategies and introduces a range of theoretical perspectives that empowers service organizations to conceptualize and plan for building resilience. The research guides service organizations to become more resilient to external shocks and adapt to changing circumstances by diversifying their offerings, optimizing their resources and adopting flexible work arrangements. The study elaborates on the enhancement of resilience, increasing innovation, improving efficiency and enhancing customer satisfaction for service organizations to remain competitive and contribute to positive social and economic outcomes through the adoption of both reconfiguration and transformational strategies.

The study also guides the service organizations to become more resilient to external shocks and adapt to changing circumstances by diversifying their offerings, optimizing their resources and adopting flexible work arrangements. Rapid innovation and business model innovation are essential components, enabling service organizations to foster a culture of innovation and remain competitive. In addition, the adoption can lead to improved financial performance, job creation and economic growth, contributing to positive social and economic impacts.

The resilience model bestows a comprehensive understanding of the pertinence of building resilience for service organizations. It identifies the antecedents that influence the adoption of these strategies and introduces a range of theoretical perspectives that empowers service organizations to conceptualize and plan for building resilience. The research also provides a foundation for further investigation into the effectiveness of these strategies and their impact on organizational performance and sustainability. By better preparing service organizations for disruptions and uncertainties, this research triggers ameliorated organizational performance and sustainability.

Within the realm of the service industry, the present investigation has undertaken the development, quantification and scrutiny of both resilience and tenacity. In addition, it has delved into the intricate dynamics surrounding the influencing factors and antecedents that bear upon resilience, elucidating their consequential impact on the operational performance and outlook of service-oriented organizations. The findings derived from this research furnish valuable insights germane to enhancing operational efficacy and surmounting impediments within the sector.

This study aims to focus on the supply chain (SC) cost drivers of healthcare industries in the USA, as SC costs have increased 40% over the last decade. The second-most significant expense, the SC, accounts for 38% of total expenses in a typical hospital, while most other industries can operate within 10% of their operating cost. This makes healthcare centers supply-chain-sensitive organizations with limited facilities for high-quality healthcare services. As the cost drivers of healthcare SC are almost unknown to managers, their jobs become more complex.

Guided by pragmatism and positivism paradigms, a cross-sectional study has been designed using quantitative and deductive approaches. Both primary and secondary data were used. Primary data were collected from health centers across the country, and secondary data were from healthcare-related databases. This study examined the attributes that explain the most significant variation in each contributing factor. With multiple regression analysis for predicting cost and Student's t-tests for the significance of contributing factors, the authors of this study examined different theories, including the market-based view and five-forces, network and transaction cost analysis.

This study revealed that supply, materials and services represent the most significant expenses in primary care. Supply-chain cost breakdown results in four critical factors: facility, inventory, information and transportation.

This study examined the data from primary and secondary care institutions. Tertiary and quaternary care systems were not included. Although tertiary and quaternary care systems represent a small portion of the healthcare system, future research should address the supply chain costs of highly specialized organizations.

This study suggests methods that can help to improve supply chain operations in healthcare organizations worldwide.

This study presents an empirically proven methodology for testing the statistical significance of the primary factors contributing to healthcare supply chain costs. The results of this study may lead to positive policy changes to improve healthcare organizations' efficiency and increase access to high-quality healthcare.