Digital security governance: What can we learn from high reliability organizations?

Stef Schinagl; Abbas Shahim; Svetlana Khapova; Bart van den Hooff

Digital security governance: What can we learn from high reliability organizations?

Stef Schinagl, Abbas Shahim, Svetlana Khapova, Bart van den Hooff

Research output: Chapter in Book / Report / Conference proceeding › Conference contribution › Academic › peer-review

Abstract

With the growing digitalization of businesses, digital security governance (DSG) is becoming central to organizational survival strategies. However, many organizations fail to establish successful DSG practices and, consequently, fail to understand how DSG can lower the severity of cybersecurity failures. This paper aims to contribute to filling this gap. By putting the five principles of the High Reliability Organization (HRO) central to the design of our qualitative investigation, we engage in interviewing forty-two chief information security officers (CISOs) and chief information officers (CIOs) of large organizations in the Netherlands about their views on why organizations fail to successfully achieve DSG. Our data show that HRO principles are partly relevant but lacking in DSG approaches, which potentially increases security failure. We conclude this paper by discussing these findings in light of future research and practice.

Original language	English
Title of host publication	Proceedings of the 56th Annual Hawaii International Conference on System Sciences (HICSS 2023)
Editors	Tung X. Bui
Publisher	HICSS Conference Office Department of IT Management, Shidler College of Business, University of Hawaii
Pages	5938-5948
Number of pages	11
ISBN (Electronic)	9780998133164
Publication status	Published - 2023
Event	56th Annual Hawaii International Conference on System Sciences, HICSS 2023 - Virtual, Online, United States Duration: 3 Jan 2023 → 6 Jan 2023

Publication series

Name	Proceedings of the Annual Hawaii International Conference on System Sciences
Volume	2023-January
ISSN (Print)	1530-1605

Conference

Conference	56th Annual Hawaii International Conference on System Sciences, HICSS 2023
Country/Territory	United States
City	Virtual, Online
Period	3/01/23 → 6/01/23

Bibliographical note

Publisher Copyright:
© 2023 IEEE Computer Society. All rights reserved.

Keywords

Cybersecurity
Digital Security Governance
High Reliability Organizations
IS-security

UN SDGs

This output contributes to the following UN Sustainable Development Goals (SDGs)

Access to Document

Persistent URL (handle)

Persistent link

Cite this

Schinagl, S., Shahim, A., Khapova, S., & van den Hooff, B. (2023). Digital security governance: What can we learn from high reliability organizations? In T. X. Bui (Ed.), Proceedings of the 56th Annual Hawaii International Conference on System Sciences (HICSS 2023) (pp. 5938-5948). (Proceedings of the Annual Hawaii International Conference on System Sciences; Vol. 2023-January). HICSS Conference Office Department of IT Management, Shidler College of Business, University of Hawaii. https://scholarspace.manoa.hawaii.edu/items/cefd14fc-3cfb-4d30-a886-7096b7474ead

Schinagl, Stef ; Shahim, Abbas ; Khapova, Svetlana et al. / Digital security governance : What can we learn from high reliability organizations?. Proceedings of the 56th Annual Hawaii International Conference on System Sciences (HICSS 2023). editor / Tung X. Bui. HICSS Conference Office Department of IT Management, Shidler College of Business, University of Hawaii, 2023. pp. 5938-5948 (Proceedings of the Annual Hawaii International Conference on System Sciences).

@inproceedings{a9b3a68b168441faac61dfc1257c092d,

title = "Digital security governance: What can we learn from high reliability organizations?",

abstract = "With the growing digitalization of businesses, digital security governance (DSG) is becoming central to organizational survival strategies. However, many organizations fail to establish successful DSG practices and, consequently, fail to understand how DSG can lower the severity of cybersecurity failures. This paper aims to contribute to filling this gap. By putting the five principles of the High Reliability Organization (HRO) central to the design of our qualitative investigation, we engage in interviewing forty-two chief information security officers (CISOs) and chief information officers (CIOs) of large organizations in the Netherlands about their views on why organizations fail to successfully achieve DSG. Our data show that HRO principles are partly relevant but lacking in DSG approaches, which potentially increases security failure. We conclude this paper by discussing these findings in light of future research and practice.",

keywords = "Cybersecurity, Digital Security Governance, High Reliability Organizations, IS-security",

author = "Stef Schinagl and Abbas Shahim and Svetlana Khapova and \{van den Hooff\}, Bart",

note = "Publisher Copyright: {\textcopyright} 2023 IEEE Computer Society. All rights reserved.; 56th Annual Hawaii International Conference on System Sciences, HICSS 2023 ; Conference date: 03-01-2023 Through 06-01-2023",

year = "2023",

language = "English",

series = "Proceedings of the Annual Hawaii International Conference on System Sciences",

publisher = "HICSS Conference Office Department of IT Management, Shidler College of Business, University of Hawaii",

pages = "5938--5948",

editor = "Bui, \{Tung X.\}",

booktitle = "Proceedings of the 56th Annual Hawaii International Conference on System Sciences (HICSS 2023)",

}

Schinagl, S , Shahim, A , Khapova, S & van den Hooff, B 2023, Digital security governance: What can we learn from high reliability organizations? in TX Bui (ed.), Proceedings of the 56th Annual Hawaii International Conference on System Sciences (HICSS 2023). Proceedings of the Annual Hawaii International Conference on System Sciences, vol. 2023-January, HICSS Conference Office Department of IT Management, Shidler College of Business, University of Hawaii, pp. 5938-5948, 56th Annual Hawaii International Conference on System Sciences, HICSS 2023, Virtual, Online, United States, 3/01/23. <https://scholarspace.manoa.hawaii.edu/items/cefd14fc-3cfb-4d30-a886-7096b7474ead>

Digital security governance: What can we learn from high reliability organizations? / Schinagl, Stef ; Shahim, Abbas ; Khapova, Svetlana et al.
Proceedings of the 56th Annual Hawaii International Conference on System Sciences (HICSS 2023). ed. / Tung X. Bui. HICSS Conference Office Department of IT Management, Shidler College of Business, University of Hawaii, 2023. p. 5938-5948 (Proceedings of the Annual Hawaii International Conference on System Sciences; Vol. 2023-January).

Research output: Chapter in Book / Report / Conference proceeding › Conference contribution › Academic › peer-review

TY - GEN

T1 - Digital security governance

T2 - 56th Annual Hawaii International Conference on System Sciences, HICSS 2023

AU - Schinagl, Stef

AU - Shahim, Abbas

AU - Khapova, Svetlana

AU - van den Hooff, Bart

PY - 2023

Y1 - 2023

N2 - With the growing digitalization of businesses, digital security governance (DSG) is becoming central to organizational survival strategies. However, many organizations fail to establish successful DSG practices and, consequently, fail to understand how DSG can lower the severity of cybersecurity failures. This paper aims to contribute to filling this gap. By putting the five principles of the High Reliability Organization (HRO) central to the design of our qualitative investigation, we engage in interviewing forty-two chief information security officers (CISOs) and chief information officers (CIOs) of large organizations in the Netherlands about their views on why organizations fail to successfully achieve DSG. Our data show that HRO principles are partly relevant but lacking in DSG approaches, which potentially increases security failure. We conclude this paper by discussing these findings in light of future research and practice.

AB - With the growing digitalization of businesses, digital security governance (DSG) is becoming central to organizational survival strategies. However, many organizations fail to establish successful DSG practices and, consequently, fail to understand how DSG can lower the severity of cybersecurity failures. This paper aims to contribute to filling this gap. By putting the five principles of the High Reliability Organization (HRO) central to the design of our qualitative investigation, we engage in interviewing forty-two chief information security officers (CISOs) and chief information officers (CIOs) of large organizations in the Netherlands about their views on why organizations fail to successfully achieve DSG. Our data show that HRO principles are partly relevant but lacking in DSG approaches, which potentially increases security failure. We conclude this paper by discussing these findings in light of future research and practice.

KW - Cybersecurity

KW - Digital Security Governance

KW - High Reliability Organizations

KW - IS-security

UR - https://www.scopus.com/pages/publications/85152126662

UR - https://www.scopus.com/inward/citedby.url?scp=85152126662&partnerID=8YFLogxK

M3 - Conference contribution

AN - SCOPUS:85152126662

T3 - Proceedings of the Annual Hawaii International Conference on System Sciences

SP - 5938

EP - 5948

BT - Proceedings of the 56th Annual Hawaii International Conference on System Sciences (HICSS 2023)

A2 - Bui, Tung X.

PB - HICSS Conference Office Department of IT Management, Shidler College of Business, University of Hawaii

Y2 - 3 January 2023 through 6 January 2023

ER -

Schinagl S , Shahim A , Khapova S , van den Hooff B. Digital security governance: What can we learn from high reliability organizations? In Bui TX, editor, Proceedings of the 56th Annual Hawaii International Conference on System Sciences (HICSS 2023). HICSS Conference Office Department of IT Management, Shidler College of Business, University of Hawaii. 2023. p. 5938-5948. (Proceedings of the Annual Hawaii International Conference on System Sciences). Epub 2023 Jan 3.

Digital security governance: What can we learn from high reliability organizations?

Abstract

Publication series

Conference

Bibliographical note

Keywords

UN SDGs

Access to Document

Persistent URL (handle)

Other files and links

Fingerprint

Cite this