Journal of the Midwest Association for Information Systems (JMWAIS)


Information technology (IT) is a global phenomenon that provides organizations of all types the ability to achieve enterprise objectives. One IT component is computer security, sometimes referred to as cybersecurity, the detection and prevention of a rapidly evolving collection of threats and vulnerabilities capable of introducing significant IT risk to an organization. Seminal events such as the creation of U.S. Cyber Command in 2009 acknowledging cyberspace as the fifth domain of war, and the 2015 recall by Fiat Chrysler of 1.4 million vehicles to mitigate an Internet enabled threat, serve as bookends framing the rapid evolution of cybersecurity threats and the need for organizations to better understand the collective vulnerabilities that enable computer security risk. However, a recent literature review of a major information systems (IS) research journal suggests publication of academic research associated with management of computer security from an enterprise perspective is limited. Given the relevance of computer security in today’s IT environment, this finding suggests that enterprise computer security is an under studied research topic. This article addresses this finding and the research gaps with the intent of encouraging new research in this domain.