ARTICLE

SMALL AND MEDIUM BUSINESSES READINESS TOWARDS CYBERATTACKS IN SAUDI ARABIA

  1. HOME
  2. ARTICLE

11 Pages : 113-126

http://dx.doi.org/10.31703/ger.2023(VIII-I).11      10.31703/ger.2023(VIII-I).11      Published : Mar 2023

Small and Medium Businesses Readiness towards Cyberattacks in Saudi Arabia

Abstract

    While large companies have the capability and resources to protect their systems from the increasing number of cyberattacks, little is known regarding the recent cybersecurity preparedness of Small and Medium Businesses (SMBs). The purpose of this study is to examine the factors that impact the SMB's readiness towards cyberattacks, this research used the identified constructs, the SMB's readiness toward cyberattacks, government regulations and support, cyberattacks, awareness of cybersecurity-threat, and information technology risk management that were established in prior research. The findings demonstrated an overall good model. In addition, the results showed that government regulations and support, awareness of cybersecurity-Threat, and information technology risk management have a significant impact on the SMB's readiness toward cyberattack. Furthermore, government regulations and support have a significant impact on cyberattacks and awareness of cybersecurity-threat. These findings can be used to facilitate future studies and improve the existing understanding of how SMBs can be prepared to reduce the incidence and effect of cyberattacks.

    Awareness of Cybersecurity, Cyberattacks, Readiness, SMB

    (1) Saleh H Alarifi
    Assistant Professor, Department of Management Information Systems, Taif University, Taif, Saudi Arabia.
Fulltext PDF

References

  • Alharbi, F., Alsulami, M., Al-Solami, A., Al- Otaibi, Y., Al-Osimi, M., Al-Qanor, F., & Al-Otaibi, K. (2021). The impact of cybersecurity practices on cyberattack damage: The perspective of small enterprises in Saudi Arabia. Sensors, 21(20), 6901. https://doi.org/10.3390/s21206901
  • Amankwah-Amoah, J., Khan, Z., Wood, G., & Knight, G. (2021). COVID-19 and digitalization: The great acceleration. Journal of Business Research, 136, 602-611. https://doi.org/10.1016/j.jbusres.2021.08.011
  • Bada, M., & Nurse, J. R. (2019). Developing cybersecurity education and awareness programs for small and medium-sized enterprises (SMEs). Information & Computer Security, 27(3), 393-410. https://doi.org/10.1108/ICS-07-2018-0080
  • Berry, C. T., & Berry, R. L. (2018). An initial assessment of small business risk management approaches for cyber security threats. International Journal of Business Continuity and Risk Management, 8(1), 1-10. https://doi.org/10.1504/IJBCRM.2018.090580
  • Carías, J. F., Arrizabalaga, S., Labaka, L., & Hernantes, J. (2021). Cyber resilience self-assessment tool (cr-sat) for SMEs. IEEE Access, 9, 80741-80762.
  • Chidukwani, A., Zander, S., & Koutsakis, P. (2022). A Survey on the Cyber Security of Small-to-Medium Businesses: Challenges, Research Focus, and Recommendations. IEEE Access, 10, 85701-85719. https://doi.org/10.1109/ACCESS.2022.3197899
  • Chizanga, M. K., Agola, J., & Rodrigues, A. (2022). Factors Affecting Cyber Security Awareness in Combating Cyber Crime in Kenyan Public Universities. International Research Journal of Innovations in Engineering and Technology, 6(1), 54. https://doi.org/10.47001/IRJIET/2022.601011
  • Cybersecurity, C. I. (2018). Framework for improving critical infrastructure cybersecurity. https://nvlpubs.NIST.gov/nistpubs/CSWP/NIST.CSWP,4162018
  • DeVellis, R .F. 2016. Scale development: Theory and applications. Vol. 26. Los Angeles: Sage publications,
  • rendor, M. E., & Yildirim, M. (2022). Cybersecurity awareness in online education: A case study analysis . IEEE Access, 10, 52319-52335. https://doi.org/10.1109/ACCESS.2022.3171829
  • Estay, D. A. S., Sahay, R., Barfod, M. B., & Jensen, C. D. (2020). A systematic review of cyber-resilience assessment frameworks. Computers & Security, 97, 101996 . https://doi.org/10.1016/j.cose.2020.101996
  • Gafni, R., & Pavel, T. (2019). The invisible hole of information on SMB's cybersecurity. Online Journal of Applied Knowledge Management (OJAKM), 7(1), 14-26. https://doi.org/10.36965/OJAKM.2019.7(1)14-26
  • Gourisetti, S. N. G., Mix, S., Mylrea, M., Bonebrake, C., & Touhiduzzaman, M. (2019, April). Secure Design and Development Cybersecurity Capability Maturity Model (SD2-C2M2) Next- Generation Cyber Resilience by Design. In Proceedings of the Northwest Cybersecurity Symposium (1-9). https://doi.org/10.1145/3332448.3332461
  • Hair Jr, J. F., Hult, G. T. M., Ringle, C., & Sarstedt, M. (2016). A primer on partial least squares structural equation modeling (PLS-SEM). Thousand Oaks: Sage publications.
  • Hasan, S., Ali, M., Kurnia, S., & Thurasamy, R. (2021). Evaluating the cyber security readiness of organizations and its influence on performance . Journal of Information Security and pplications, 58, 102726. https://doi.org/10.1016/j.jisa.2020.102726
  • Kiganda, M. (2022). An Assessment of the factors affecting cyber resilience in microfinance institutions in Kenya. (Doctoral dissertation, Strathmore University). http://hdl.handle.net/11071/12982
  • McKinsey. (2020). How COVID-19 has pushed companies over the technology tipping point. https://www.mckinsey.com/capabilities/strategy-and-corporate-finance/our-insights/how-covid-19-has-pushed-companies-over-the-technology-tipping-point-and-transformed-business-forever
  • Muncaster, P. (2020), Over 50,000 UK SMEs could collapse following cyber-attack. https://www.infosecurity-magazine.com/news/over-50000-uk-smes-could-collapse/
  • Ncubukezi, T., Mwansa, L., & Rocaries, F. (2020). A review of the current cyber hygiene in small and medium-sized businesses. In 2020 15th International Conference for Internet Technology and Secured Transactions (ICITST) (1-6). IEEE. https://doi.org/10.23919/ICITST51030.2020.9351339
  • Noparumpa, T., Ruangkanjanases, A., & Hariguna, T. (2021). Organization Benefit as an Outcome of Organizational Security Adoption: The Role of Cyber Security Readiness and Technology Readiness. Sustainability, 13(24), 13761. https://doi.org/10.3390/su132413761
  • Paulsen, C., & Toth, P. (2016). Small business information security: The fundamentals. National Institute of Standards and Technology Interagency Report (NISTIR). 7621 Revision 1. https://doi.org/10.6028/NIST.IR.7621r1
  • Perozzo, H., Zaghloul, F., & Ravarini, A. (2022). CyberSecurity Readiness: A Model for SMEs based on the Socio- Technical Perspective. Complex Systems Informatics and Modeling Quarterly, (33), 53-66. https://doi.org/10.7250/csimq.2022-33.04
  • Renaud, K., & Ophoff, J. (2021). A cyber situational awareness model to predict the implementation of cyber security controls and precautions by SMEs. Organizational Cybersecurity Journal: Practice, Process and People, 1(1), 24-46. https://doi.org/10.1108/OCJ-03-2021-0004
  • Renaud, K., & Weir, G. R. (2016, August). Cybersecurity and the unbearability of uncertainty. In 2016 Cybersecurity and Cyberforensics Conference (CCC) (137- 143). IEEE. https://doi.org/10.1109/CCC.2016.29
  • Rohn, E., Sabari, G., & Leshem, G. (2016). Explaining small business InfoSec posture using social theories. Information & Computer Security, 24(5), 534-556. https://doi.org/10.1108/ICS-09-2015-0041
  • Russell, A. L. 2014. Cyber blockades. Washington D.C: Georgetown University Press.
  • Shaw, R. S., Chen, C. C., Harris, A. L., & Huang, H. J. (2009). The impact of information richness on information security awareness training effectiveness. Computers & Education, 52(1), 92-100. https://doi.org/10.1016/j.compedu.2008.06.011
  • Sia, N. C., Hosseinian-Far, A., & Toe, T. T. (2021). Reasons behind poor cybersecurity readiness of Singapore’s small organizations: Reveal by case studies. In Cybersecurity, Privacy and Freedom Protection in the Connected World: Proceedings of the 13th International Conference on Global Security, Safety and Sustainability, London, (269-283). https://doi.org/10.1007/978-3-030-68534-8_17
  • Syafrizal, M., Selamat, S. R., & Zakaria, N. A. (2020). Analysis of cybersecurity standard and framework components. International Journal of Communication Networks and Information Security, 12(3), 417-432. https://doi.org/10.17762/ijcnis.v12i3.4817
  • Teufel, S., Teufel, B., Aldabbas, M., & Nguyen, M. (2020). Cyber security canvas for SMEs. In Information and Cyber Security: 19th International Conference, ISSA 2020, Pretoria, South Africa, (20-33). https://doi.org/10.1007/978-3-030-66039-0_2

Cite this article

APA

CHICAGO

    CHICAGO : Alarifi, Saleh H. 2023. "Small and Medium Businesses Readiness towards Cyberattacks in Saudi Arabia." Global Economics Review, VIII (I): 113-126 doi: 10.31703/ger.2023(VIII-I).11

HARVARD

    HARVARD : ALARIFI, S. H. 2023. Small and Medium Businesses Readiness towards Cyberattacks in Saudi Arabia. Global Economics Review, VIII, 113-126.

MHRA

    MHRA : Alarifi, Saleh H. 2023. "Small and Medium Businesses Readiness towards Cyberattacks in Saudi Arabia." Global Economics Review, VIII: 113-126

MLA

    MLA : Alarifi, Saleh H. "Small and Medium Businesses Readiness towards Cyberattacks in Saudi Arabia." Global Economics Review, VIII.I (2023): 113-126 Print.

OXFORD

    OXFORD : Alarifi, Saleh H (2023), "Small and Medium Businesses Readiness towards Cyberattacks in Saudi Arabia", Global Economics Review, VIII (I), 113-126

TURABIAN