Search results

The human factor is the most important defense asset against cyberattacks. To ensure that the human factor stays strong, a cybersecurity culture must be established and cultivated in a company to guide the attitudes and behaviors of employees. Many cybersecurity culture frameworks exist; however, their practical application is difficult. This paper aims to demonstrate how an established framework can be applied to determine and improve the cybersecurity culture of a company.

Two surveys were conducted within eight months in the internal IT department of a global software company to analyze the cybersecurity culture and the applied improvement measures. Both surveys comprised the same 23 questions to measure cybersecurity culture according to six dimensions: cybersecurity accountability, cybersecurity commitment, cybersecurity necessity and importance, cybersecurity policy effectiveness, information usage perception and management buy-in.

Results demonstrate that cybersecurity culture maturity can be determined and improved if accurate measures are derived from the results of the survey. The first survey showed potential for improving the dimensions of cybersecurity accountability, cybersecurity commitment and cybersecurity policy effectiveness, while the second survey proved that these dimensions have been improved.

This paper proves that practical application of cybersecurity culture frameworks is possible if they are appropriately tailored to a given organization. In this regard, scientific research and practical application combine to offer real value to researchers and cybersecurity executives.

Intellectual capital (IC) plays a crucial role in today’s volatile business landscape, yet its measurement remains complex. To better navigate these challenges, the authors propose the Integrated Intellectual Capital Measurement (IICM) model, an innovative, robust and comprehensive framework designed to capture IC amid business uncertainty. This study focuses on IC measurement models, typically reliant on secondary data, thus distinguishing it from conventional IC studies.

The authors conducted a systematic literature review (SLR) and bibliometric analysis across Web of Science, Scopus and EBSCO Business Source Ultimate in February 2023. This yielded 2,709 IC measurement studies, from which the authors selected 27 quantitative papers published from 1985 to 2023.

The analysis revealed no single, universally accepted approach for measuring IC, with company attributes such as size, industry and location significantly influencing IC measurement methods. A key finding is human capital’s critical yet underrepresented role in firm competitiveness, which the IICM model aims to elevate.

This is the first SLR focused on IC measurement amid business uncertainty, providing insights for better management and navigating turbulence. The authors envisage future research exploring the interplay between IC components, technology, innovation and network-building strategies for business resilience. Additionally, there is a need to understand better the IC’s impact on specific industries (automotive, transportation and hospitality), Social Development Goals and digital transformation performance.

This study aims to investigate how organizational culture (OC) and transformational leadership (TL) affect corporate social responsibility (CSR) performance (environmental performance and social performance) and financial performance (FP) in the context of the Italian manufacturing sector. Grounded in resource-based view theory, this study explores how these factors influence sustainable firm performance.

Data gathered from 260 employees were analyzed to examine the multidimensional aspects of CSR, encompassing social and environmental sustainability.

The findings highlight the pressing need for sustainable firm performance in the existing environment, supporting the hypothesis that firms achieve sustainable and FP through the recognition of TL and OC. Moreover, a positive and significant relationship between CSR performance and FP was established, underscoring the strategic importance of integrating CSR initiatives into core business practices. This study offers valuable insights for both academia and firms, providing theoretical and practical implications that underscore the importance of cultivating a robust OC to drive performance enhancements.

This study is novel because it is one of the first, to the best of the author’s knowledge, to analyze the relationships between TL, OC and performance components associated with CSR.

This paper aims to investigate how congruent keywords are used in information security policies (ISPs) to pinpoint and guide clear actionable advice and suggest a metric for measuring the quality of keyword use in ISPs.

A qualitative content analysis of 15 ISPs from public agencies in Sweden was conducted with the aid of Orange Data Mining Software. The authors extracted 890 sentences from these ISPs that included one or more of the analyzed keywords. These sentences were analyzed using the new metric – keyword loss of specificity – to assess to what extent the selected keywords were used for pinpointing and guiding actionable advice. Thus, the authors classified the extracted sentences as either actionable advice or other information, depending on the type of information conveyed.

The results show a significant keyword loss of specificity in relation to pieces of actionable advice in ISPs provided by Swedish public agencies. About two-thirds of the sentences in which the analyzed keywords were used focused on information other than actionable advice. Such dual use of keywords reduces the possibility of pinpointing and communicating clear, actionable advice.

The suggested metric provides a means to assess the quality of how keywords are used in ISPs for different purposes. The results show that more research is needed on how keywords are used in ISPs.

The authors recommended that ISP designers exercise caution when using keywords in ISPs and maintain coherency in their use of keywords. ISP designers can use the suggested metrics to assess the quality of actionable advice in their ISPs.

The keyword loss of specificity metric adds to the few quantitative metrics available to assess ISP quality. To the best of the authors’ knowledge, applying this metric is a first attempt to measure the quality of actionable advice in ISPs.

The Kingdom of Saudi Arabia (KSA) is embracing digital transformation and e-government services, aiming to improve efficiency, accessibility and citizen-centricity. Nonetheless, the country faces challenges such as evolving cyber threats. The purpose of this study is to investigate the factors influencing cybersecurity practices to ensure the reliability and security of e-government services.

This paper investigates the multifaceted dynamics of cybersecurity practices and their impact on the quality and effectiveness of e-government services. Five key factors explored include organizational culture, technology infrastructure, adherence to standards and regulations, employee training and awareness and financial investment in cybersecurity. This study used a quantitative method to gather data from 320 participants. The researcher collected 285 completed questionnaires, excluding unusable or incomplete responses, and analyzed the final data set using partial least squares structural equation modeling.

The findings show that financial investment in cybersecurity, employee training and awareness and adherence to cybersecurity regulations significantly influence the adoption of robust cybersecurity practices. However, the relationship between organizational culture and cybersecurity practices is less straightforward. The research establishes a strong positive correlation between cybersecurity practices and e-government service quality, highlighting the role of security in fostering public trust and user satisfaction and meeting the evolving needs of citizens and businesses.

This research contributes valuable empirical evidence to the fields of e-government and cybersecurity, offering insights that can inform evidence-based policy decisions and resource allocation. By understanding the nuanced dynamics at play, Saudi Arabia is better poised to fortify its digital governance infrastructure and provide secure, high-quality e-government services to its constituents.

This strategic commentary aims to examine the benefits and drawbacks of rigid frameworks versus flexible approaches to measuring employee engagement, arguing for a hybrid model that incorporates the best of both to better correspond with organisational subtleties and strategic goals.

This study compares the standardised, benchmarking capabilities of inflexible frameworks such as Gallup’s Q12 to the adaptability and customisation potential of flexible approaches. It emphasises the creation and implementation of a hybrid methodology that preserves the integrity of engagement measurement while also incorporating organisational-specific insights.

Despite their different benefits, rigid frameworks may neglect distinct organisational cultures, whereas completely flexible techniques may suffer with measuring consistency. A hybrid model, which combines core standardised questions and unique items, provides a balanced solution for improving the relevance, actionability and reliability of engagement data across dynamic organisational landscapes.

The discussion culminates with the proposal of a hybrid measurement strategy as a strategic innovation in human resource management. By combining scientific rigour and contextual sensitivity, this model provides a nuanced roadmap for organisations looking to thoroughly understand and effectively negotiate the complexity of employee engagement in an evolving work environment.

The competition in the academe has always been tough, but today, the academe seems to be more like an industry than an academic community as academics are evaluated through quantified and economic means.

This article leans on Heidegger’s thoughts on the essence of technology and his ontological view on being to show the dangers that lie in this quantification of researchers and research.

Despite the benefits that information systems (ISs) offer to people and research, it seems that technology has made it possible to objectify researchers and research. This has a negative impact on the academe and should thus be looked into especially by the IS field, which should note the problems that exist in its core. This phenomenon of quantified academics is clearly visible at academic quantification sites, where academics are evaluated using metrics that count their output. It seems that the essence of technology has disturbed the way research is valued by emphasising its quantifiable aspects. The study claims that it is important to look for other ways to evaluate researchers rather than trying to maximise research production, which has led to the flooding of articles that few have the time or interest to read.

This paper offers new insights into the current phenomenon of quantification of academics and underlines the need for critical changes if in order to achieve the academic culture that is desirable for future academics.

This study responded to the call to empirically reconcile conflicting findings in unethical pro-organizational behavior (UPB) literature. It did so by examining the influence of organizational culture on the relationship between affective organizational commitment and UPB.

Using a sample of 710 U.S. service sector employees based on a three-wave data collection design, structural invariance assessment was utilized to evaluate the relationship between affective organizational commitment and UPB across organizational cultures with opposing effectiveness criteria (i.e. focused on stability vs flexibility).

The result indicated a statistically significant positive direct effect between affective organizational commitment and UPB for the stability-focused cultures, while finding a statistically insignificant effect for the flexibility-focused cultures. These results support organizational culture research, which shows that organizational cultures with opposing effectiveness criteria (i.e. stability vs flexibility) can either encourage or discourage ethical behavior.

While leaders and managers encourage employee commitment to the organization, it is important to understand that increased organizational commitment is not limited to positive outcomes. Cultivating elements of flexibility-oriented cultures, like promoting teamwork (as in clan cultures) or fostering innovation and adaptability (as in adhocracy cultures), can be a strategic approach to minimize the chances of UPB among committed employees.

By integrating insights from social exchange theory, Trevino’s interactionist model and the competing values framework, we have contributed to a nuanced understanding of how different organizational cultures can suppress or stimulate UPB.

Cooperative agreements between universities and firms (U–F) have gained prominence. However, the literature on organisational culture and the formation of cooperation agreements is scarce. This study aims to analyse, from the perspective of the managers of small- and medium-sized enterprises (SMEs) and those in charge in universities, the perceptions of the influence of organisational culture on this type of U–F cooperation.

To this end, multiple case studies were adopted, involving cooperation agreements between a Portuguese and eight SMEs incubated in UBImedical. Semi-structured interviews were used to gather information, aiming to understand the meaning, importance and possible obstacles caused by organisational culture in this U–F cooperation agreement.

Content analysis of the results obtained leads to the conclusion that cultural compatibility is a crucial factor for successful U–F cooperation. The exchange of knowledge, mutual trust and flexibility between those involved are identified as key determinants to build shared norms that allow a more productive, assertive union.

The study represents an important tool to support SME managers and those in charge of universities, as the evidence obtained can help them to define policies and actions with regard to the U–F cooperation process. More precisely, these SME and university managers could give more attention to culture in future cooperation agreements.

This study advances understanding of the role of organisational culture in a cooperation agreement since this was a gap identified in the literature on the topic. It also contributes to the existing body of work on U–F cooperation, demonstrating that organisational culture is considered important by partners in these agreements and should be adjusted towards compatible alignment of each party’s expectations.

This paper aims to develop a conceptual framework that jointly considers Environmental, Social and Governance (ESG) factors and organisational resilience (OR) components to ameliorate organisations' understanding of sustainability’s overall requirements and related decision-making processes.

This paper combines ESG and OR through a 3x3 conceptual matrix, where ESG factors are listed along the vertical axis and OR components along the horizontal axis. This results in nine quadrants, which have been read according to two arrangements: (1) static, looking at the specific characteristics of each single quadrant, and (2) dynamic, investigating the relationships between the different quadrants according to the system theory (ST) lens.

The integration between ESG and OR results in nine organisational typologies, each characterised by a specific focus: (1) green visioning, (2) eco ethos, (3) climate guard, (4) inclusive strategy, (5) empathy ethos, (6) community shield, (7) ethical blueprint, (8) integrity ethos and (9) compliance guard. These typologies and related focuses determine the different strategic options of organisations, the decision-making emphasis concerning ESG factors and OR components and the organisation’s behaviour concerning its internal and external environment. According to ST, the nine typologies interact with each other, emphasising the existence of interconnectedness, interdependence and cascading effects between ESG and OR.

The paper represents a unique attempt to interrelate ESG factors and OR components according to a ST lens, emphasising the dynamic nature of their interactions and organisations’ need for continuous adaptation and learning to make decisions that create sustainable long-term value.