Abstract
Today, cybersecurity is no longer just a technical issue to be solved by the IT department. Organizations of all sizes are constantly breached or attacked, and the best defense is both technical and organizational. Business leaders, working alongside technology leaders, need tools and frameworks for building cyber resilience using multiple layers of security. Financial institutions are at particular risk and the consequences of a cyber incident can be far-reaching and devastating. This paper describes how one bank built a culture of cybersecurity to create values, attitudes and believes that drive cybersecure behaviors. The case study illustrates how cybersecurity leaders at Italian bank, Banca Popolare di Sondrio (BPS) motivated, built and measured success of efforts to create a culture of cybersecurity.
Recommended Citation
Marotta, Angelica and Pearlson, Keri, "A Culture of Cybersecurity at Banca Popolare di Sondrio" (2019). AMCIS 2019 Proceedings. 24.
https://aisel.aisnet.org/amcis2019/info_security_privacy/info_security_privacy/24
A Culture of Cybersecurity at Banca Popolare di Sondrio
Today, cybersecurity is no longer just a technical issue to be solved by the IT department. Organizations of all sizes are constantly breached or attacked, and the best defense is both technical and organizational. Business leaders, working alongside technology leaders, need tools and frameworks for building cyber resilience using multiple layers of security. Financial institutions are at particular risk and the consequences of a cyber incident can be far-reaching and devastating. This paper describes how one bank built a culture of cybersecurity to create values, attitudes and believes that drive cybersecure behaviors. The case study illustrates how cybersecurity leaders at Italian bank, Banca Popolare di Sondrio (BPS) motivated, built and measured success of efforts to create a culture of cybersecurity.