The University of Southampton
University of Southampton Institutional Repository

I just want to help: SMEs engaging with cybersecurity technology

I just want to help: SMEs engaging with cybersecurity technology
I just want to help: SMEs engaging with cybersecurity technology
The cybersecurity landscape is particularly challenging for SMEs. On the one hand, they must comply with regulation or face legal sanction. But on the other, they may not have the resource or expertise to ensure regulatory compliance, especially since this is not their core business. At the same time, it is also well-attested in the literature that individuals (human actors in the ecosystem) are often targeted for cyber attacks. So, SMEs must also consider their employees but also their clients as potential risks regarding cybersecurity. Finally, it is also known that SMEs working together as part of a single supply chain are reluctant to share cybersecurity status and information. Given all of these challenges, assuming SMEs recognise their responsibility for security, they may be overwhelmed in trying to meet all the associated requirements.There are tools to help support them, of course, assuming they are motivatedto engage with such tooling. This paper looks at the followingaspects of this overall situation. In a set of four studies, we assess privatecitizen understanding of cybersecurity and who they believe to beresponsible. On that basis, we then consider their attitude to sharing datawith service providers. Moving to SMEs, we provide a general overviewof their response to the cybersecurity landscape. Finally, we ask fourSMEs across different sectors how they respond to cybersecurity tooling.As well as providing an increased understanding of private citizen AQ1and SME attitudes to cybersecurity, we conclude that SMEs need notbe overwhelmed by their responsibilities. On the contrary, they can takethe opportunity to innovate based on their experience with cybersecuritytools.
338-352
Springer, Cham
Pickering, Brian
225088d0-729e-4f17-afe2-1ad1193ccae6
Phillips, Stephen
47610c30-a543-4bac-a96a-bc1fce564a59
Erdogan, Gencer
8f23f573-90f0-4c1c-b762-49a551acd987
Moallem, A.
Pickering, Brian
225088d0-729e-4f17-afe2-1ad1193ccae6
Phillips, Stephen
47610c30-a543-4bac-a96a-bc1fce564a59
Erdogan, Gencer
8f23f573-90f0-4c1c-b762-49a551acd987
Moallem, A.

Pickering, Brian, Phillips, Stephen and Erdogan, Gencer (2023) I just want to help: SMEs engaging with cybersecurity technology. In, Moallem, A. (ed.) HCI for Cybersecurity, Privacy and Trust. HCII 202. (Lecture Notes in Computer Science, 14045) HCI International 2023 (23/07/23 - 28/07/23) Springer, Cham, pp. 338-352. (doi:10.1007/978-3-031-35822-7_23).

Record type: Book Section

Abstract

The cybersecurity landscape is particularly challenging for SMEs. On the one hand, they must comply with regulation or face legal sanction. But on the other, they may not have the resource or expertise to ensure regulatory compliance, especially since this is not their core business. At the same time, it is also well-attested in the literature that individuals (human actors in the ecosystem) are often targeted for cyber attacks. So, SMEs must also consider their employees but also their clients as potential risks regarding cybersecurity. Finally, it is also known that SMEs working together as part of a single supply chain are reluctant to share cybersecurity status and information. Given all of these challenges, assuming SMEs recognise their responsibility for security, they may be overwhelmed in trying to meet all the associated requirements.There are tools to help support them, of course, assuming they are motivatedto engage with such tooling. This paper looks at the followingaspects of this overall situation. In a set of four studies, we assess privatecitizen understanding of cybersecurity and who they believe to beresponsible. On that basis, we then consider their attitude to sharing datawith service providers. Moving to SMEs, we provide a general overviewof their response to the cybersecurity landscape. Finally, we ask fourSMEs across different sectors how they respond to cybersecurity tooling.As well as providing an increased understanding of private citizen AQ1and SME attitudes to cybersecurity, we conclude that SMEs need notbe overwhelmed by their responsibilities. On the contrary, they can takethe opportunity to innovate based on their experience with cybersecuritytools.

This record has no associated files available for download.

More information

e-pub ahead of print date: 9 July 2023
Venue - Dates: HCI International 2023, , Copenhagen, Denmark, 2023-07-23 - 2023-07-28

Identifiers

Local EPrints ID: 477831
URI: http://eprints.soton.ac.uk/id/eprint/477831
PURE UUID: 51817057-bfd4-4c5a-bc49-8645875eeb56
ORCID for Brian Pickering: ORCID iD orcid.org/0000-0002-6815-2938
ORCID for Stephen Phillips: ORCID iD orcid.org/0000-0002-7901-0839

Catalogue record

Date deposited: 15 Jun 2023 16:48
Last modified: 25 Jul 2023 01:40

Export record

Altmetrics

Contributors

Author: Brian Pickering ORCID iD
Author: Stephen Phillips ORCID iD
Author: Gencer Erdogan
Editor: A. Moallem

Download statistics

Downloads from ePrints over the past year. Other digital versions may also be available to download e.g. from the publisher's website.

View more statistics

Atom RSS 1.0 RSS 2.0

Contact ePrints Soton: eprints@soton.ac.uk

ePrints Soton supports OAI 2.0 with a base URL of http://eprints.soton.ac.uk/cgi/oai2

This repository has been built using EPrints software, developed at the University of Southampton, but available to everyone to use.

We use cookies to ensure that we give you the best experience on our website. If you continue without changing your settings, we will assume that you are happy to receive cookies on the University of Southampton website.

×