TY - GEN
T1 - Assessing Cybersecurity Readiness Among SME
AU - Lill, Bjarne
AU - Sauerwein, Clemens
AU - Zeisler, Alexander
AU - Hochstrasser, Carina
AU - Mexis, Nico
N1 - Publisher Copyright:
Copyright © 2025 by Paper published under CC license (CC BY-NC-ND 4.0)
PY - 2025
Y1 - 2025
N2 - Information security is a critical issue for small and medium-sized enterprises (SMEs) around the world. These organisations face an increasing number of security incidents and the sophistication of attacks. In order to remain competitive and protect their and their customers’ critical information, it is essential that SMEs can manage their cybersecurity risks appropriately. Accordingly, it is important that these SMEs can rely on tailored information security assessments and frameworks. However, there is a scarcity of knowledge regarding their specific needs and the practical implementation of cybersecurity within these organisations. To address this knowledge gap, an exploratory study was conducted on the SME cybersecurity situation, with a particular focus on the implementation level of cybersecurity controls within SMEs in Austria and Germany. We surveyed 30 SMEs regarding their cybersecurity implementation situation in 2023. Our findings show, among other things, a very heterogeneous picture regarding the implementation level of cybersecurity controls and outline areas for action.
AB - Information security is a critical issue for small and medium-sized enterprises (SMEs) around the world. These organisations face an increasing number of security incidents and the sophistication of attacks. In order to remain competitive and protect their and their customers’ critical information, it is essential that SMEs can manage their cybersecurity risks appropriately. Accordingly, it is important that these SMEs can rely on tailored information security assessments and frameworks. However, there is a scarcity of knowledge regarding their specific needs and the practical implementation of cybersecurity within these organisations. To address this knowledge gap, an exploratory study was conducted on the SME cybersecurity situation, with a particular focus on the implementation level of cybersecurity controls within SMEs in Austria and Germany. We surveyed 30 SMEs regarding their cybersecurity implementation situation in 2023. Our findings show, among other things, a very heterogeneous picture regarding the implementation level of cybersecurity controls and outline areas for action.
KW - Cybersecurity
KW - Information Security
KW - Small and Medium-Sized Enterprise
KW - SME
KW - Workshop
UR - https://www.scopus.com/pages/publications/105020384263
U2 - 10.5220/0013353400003929
DO - 10.5220/0013353400003929
M3 - Conference contribution
AN - SCOPUS:105020384263
T3 - International Conference on Enterprise Information Systems, ICEIS - Proceedings
SP - 253
EP - 263
BT - Proceedings of the 27th International Conference on Enterprise Information Systems, ICEIS 2025
A2 - Filipe, Joaquim
A2 - Smialek, Michal
A2 - Brodsky, Alexander
A2 - Hammoudi, Slimane
PB - Science and Technology Publications, Lda
T2 - 27th International Conference on Enterprise Information Systems, ICEIS 2025
Y2 - 4 April 2025 through 6 April 2025
ER -