%0 Journal Article
%T Optimum Spending on Cybersecurity Measures: Part II
%A Sherita Tara Kissoon
%J Journal of Information Security
%P 137-161
%@ 2153-1242
%D 2021
%I Scientific Research Publishing
%R 10.4236/jis.2021.121007
%X The purpose of this research is to
investigate the decision-making process for cybersecurity investments in
organizations through development and utilization of a digital cybersecurity
risk management framework. The initial article, Optimum Spending on
Cybersecurity Measures is published on Emerald Insight at: </span><a href=\"https://www.emerald.com/insight/1750-6166.htm\"><span style=\"font-size:12px;font-family:Verdana;\">https://www.emerald.com/insight/1750-6166.htm</span></a><span style=\"font-size:12px;font-family:Verdana;\">, contains the detailed literature review, and the data results from
Phase I and Phase II of this research </span><span times=\"\" new=\"\" roman\",\"serif\";\"=\"\" style=\"font-size: 10pt;\"> <span style=\"font-family:Verdana;font-size:12px;\">REF _Ref61862658 \r \h</span> <span style=\"font-family:Verdana;font-size:12px;\">\* MERGEFORMAT </span></span><span style=\"font-size:12px;font-family:Verdana;\">[1]</span><span style=\"font-size:10pt;font-family:&quot;\"></span><span times=\"\" new=\"\" roman\",\"serif\";\"=\"\" style=\"font-size: 10pt;\"></span><span style=\"font-size:12px;font-family:Verdana;\">. This article will
highlight the research completed in the area of organizational decision-making
on cybersecurity spend. In leveraging the review of additional studies, this
research utilizes a regression framework and case study methodology to
demonstrate that effective risk-based decisions are necessary when implementing
cybersecurity controls. Through regression analysis, the effectiveness of
current implemented cybersecurity measures in organizations </span><span style=\"font-size:12px;font-family:Verdana;\">is</span><span style=\"font-size:12px;font-family:Verdana;\"> explored when connecting a dependent variable with several independent
variables. The focus of this article is on the strategic decisions made by
organizations when implementing cybersecurity measures. This research belongs
to the area of risk management, and various models within the field of 1)
information security</span><span style=\"font-size:12px;font-family:Verdana;\">;</span><span style=\"font-size:12px;font-family:Verdana;\"> 2) strategic management</span><span style=\"font-size:12px;font-family:Verdana;\">;</span><span style=\"font-size:12px;font-family:Verdana;\"> and 3) organizational decision-making to determine optimum spending on
cybersecurity measures for risk taking organizations. This research resulted in
the develop</span><span style=\"font-size:12px;font-family:Verdana;\">ment</span><span
%K Information Security
%K Risk Management
%K Strategy
%K Governance
%K Organizational Decision Making
%U http://www.scirp.org/journal/PaperInformation.aspx?PaperID=106651