The University of Southampton
×
Filter your search:
University of Southampton Institutional Repository

Cybersecurity awareness and capacities of SMEs

Cybersecurity awareness and capacities of SMEs
Cybersecurity awareness and capacities of SMEs
Small and Medium Enterprises (SMEs) are increasingly exposed to cyber risks. Some of the main reasons include budget constraints, the employees’ lack of cybersecurity awareness, cross-sectoral cyber risks, lack of security practices at organizational level, and so on. To equip SMEs with appropriate tools and guidelines that help mitigate their exposure to cyber risk, we must better understand the SMEs’ context and their needs. Thus, the contribution of this paper is a survey based on responses collected from 141 SMEs based in the UK, where the objective is to obtain information to better understand their level of cybersecurity awareness and practices they apply to protect against cyber risks. Our results indicate that although SMEs do apply some basic cybersecurity measures to mitigate cyber risks, there is a general lack of cybersecurity awareness and lack of processes and tools to improve cybersecurity practices. Our findings provide to the cybersecurity community a better understanding of the SME context in terms of cybersecurity awareness and cybersecurity practices, and may be used as a foundation to further develop appropriate tools and processes to strengthen the cybersecurity of SMEs.
Cybersecurity, Cyber Risk, Awareness, Capacity, Practice, SME, Survey
Erdogan, Gencer
59e8eb09-3206-4891-ad2b-66af6673e0ca
Halvorsrud, Ragnhild
c01e0698-3f4a-4eaf-83d4-610666eac88e
Pickering, Brian
225088d0-729e-4f17-afe2-1ad1193ccae6
Boletsis, Costas
61b9bb8e-baa3-4e9a-a4ea-4f22b764d149
Tverdal, Simeon
c6e51298-2af8-4d91-a0a7-1375531ddfad
Erdogan, Gencer
59e8eb09-3206-4891-ad2b-66af6673e0ca
Halvorsrud, Ragnhild
c01e0698-3f4a-4eaf-83d4-610666eac88e
Pickering, Brian
225088d0-729e-4f17-afe2-1ad1193ccae6
Boletsis, Costas
61b9bb8e-baa3-4e9a-a4ea-4f22b764d149
Tverdal, Simeon
c6e51298-2af8-4d91-a0a7-1375531ddfad

Erdogan, Gencer, Halvorsrud, Ragnhild, Pickering, Brian, Boletsis, Costas and Tverdal, Simeon (2022) Cybersecurity awareness and capacities of SMEs. In International Conference on Information Systems Security and Privacy 2023. 9 pp . (In Press) (doi:10.5220/0011609600003405).

Record type: Conference or Workshop Item (Paper)

Abstract

Small and Medium Enterprises (SMEs) are increasingly exposed to cyber risks. Some of the main reasons include budget constraints, the employees’ lack of cybersecurity awareness, cross-sectoral cyber risks, lack of security practices at organizational level, and so on. To equip SMEs with appropriate tools and guidelines that help mitigate their exposure to cyber risk, we must better understand the SMEs’ context and their needs. Thus, the contribution of this paper is a survey based on responses collected from 141 SMEs based in the UK, where the objective is to obtain information to better understand their level of cybersecurity awareness and practices they apply to protect against cyber risks. Our results indicate that although SMEs do apply some basic cybersecurity measures to mitigate cyber risks, there is a general lack of cybersecurity awareness and lack of processes and tools to improve cybersecurity practices. Our findings provide to the cybersecurity community a better understanding of the SME context in terms of cybersecurity awareness and cybersecurity practices, and may be used as a foundation to further develop appropriate tools and processes to strengthen the cybersecurity of SMEs.

This record has no associated files available for download.

More information

Accepted/In Press date: 7 December 2022
Venue - Dates: The 9th International Conference on Information Systems Security and Privacy (ICISSP 2023), Marriot, Lisbon, Lisbon, Portugal, 2023-02-22 - 2023-02-24
Related URLs:
Keywords: Cybersecurity, Cyber Risk, Awareness, Capacity, Practice, SME, Survey

Identifiers

Local EPrints ID: 473418
URI: http://eprints.soton.ac.uk/id/eprint/473418
DOI: doi:10.5220/0011609600003405
PURE UUID: d812b038-afa5-4c80-ba55-b820f20df8dd
ORCID for Brian Pickering: ORCID iD orcid.org/0000-0002-6815-2938

Catalogue record

Date deposited: 17 Jan 2023 17:59
Last modified: 17 Mar 2024 03:23

Export record

Altmetrics

Contributors

Author: Gencer Erdogan
Author: Ragnhild Halvorsrud
Author: Brian Pickering ORCID iD
Author: Costas Boletsis
Author: Simeon Tverdal

Download statistics

Downloads from ePrints over the past year. Other digital versions may also be available to download e.g. from the publisher's website.

View more statistics

Library staff additional information
Atom RSS 1.0 RSS 2.0

Contact ePrints Soton: eprints@soton.ac.uk

ePrints Soton supports OAI 2.0 with a base URL of http://eprints.soton.ac.uk/cgi/oai2

This repository has been built using EPrints software, developed at the University of Southampton, but available to everyone to use.

We use cookies to ensure that we give you the best experience on our website. If you continue without changing your settings, we will assume that you are happy to receive cookies on the University of Southampton website.

×