Search results

This study aims to assess the essential elements of internal organisational capability that influence the cybersecurity effectiveness of a construction firm. An extended McKinsey 7S model is used to analyse the relationship between a construction firm's cybersecurity effectiveness and nine internal capability elements: shared values, strategy, structure, systems, staff, style, skills, relationships with third parties and regulatory compliance.

Based on a quantitative research strategy, this study collected data through a cross-sectional survey of professionals working in the construction sector in the United Kingdom (UK). The collected data was analysed using descriptive and inferential statistical methods.

The findings underlined systems, regulatory compliance, staff and third-party relationships as the most significant elements of internal organisational capability influencing a construction firm's cybersecurity effectiveness, organised in order of importance.

Future research possibilities are proposed including the extension of the proposed diagnostic model to consider additional external factors, examining it under varying industrial relationship conditions and developing a dynamic framework that helps improve cybersecurity capability levels while overseeing execution outcomes to ensure success.

The extended McKinsey 7S model can be used as a diagnostic tool to assess the organisation's internal capabilities and evaluate the effectiveness of implemented changes. This can provide specific ways for construction firms to enhance their cybersecurity effectiveness.

This study contributes to the field of cybersecurity in the construction industry by empirically assessing the effectiveness of cybersecurity in UK construction firms using an extended McKinsey 7S model. The study highlights the importance of two additional elements, third-party relationships and construction firm regulatory compliance, which were overlooked in the original McKinsey 7S model. By utilising this model, the study develops a concise research model of essential elements of internal organisational capability that influence cybersecurity effectiveness in construction firms.

Designing and developing responsible business practices can create various tensions for service organizations. The purpose of this research is to develop a deeper understanding of the relationship between customer engagement (CE) and responsible business practices (e.g. environmental, social and/or governance [ESG], corporate social responsibility [CSR] and diversity, equity, and inclusion [DEI]) and explore customer engagement tensions that service organizations may face.

This research develops a list of CE-related responsible business practice tensions and empirically explores their relevance through in-depth interviews with nine ESG professionals.

This paper makes three important contributions. First, we find support for nine distinct but related tensions with implications for CE that organizations must navigate when pursuing responsible business practices. Second, interview participants provide some suggestions for tackling these tensions, which we support with relevant theories. Finally, we develop a conceptual framework that may stimulate future service research and inform the implementation of ESG strategies.

To the best of the authors’ knowledge, this research is the first to conceptualize and empirically explore the tensions that emerge between responsible business practices and CE. The authors develop a novel analysis of the CE-related tensions that emerge when pursuing an ESG strategy.

The findings are based on a small sample of ESG professionals. Future research may take a quantitative approach to further evaluate the role that these tensions play in engaging customers.

This research provides a conceptual framework that may guide ESG professionals in understanding, framing and navigating CE-related tensions when pursuing responsible business practices.

A social benefit may be found when service organizations are better able to successfully navigate CE-related tensions when pursuing responsible business practices.