Paper Type
Complete
Abstract
In our technology-dependent and interconnected world, the ability to govern and oversee cyber risk is essential for driving sustainable business practices. The increasing costs of and investments in cyber risk management raise questions about the capacity of organizations to strategically control these risks. Using a simulation gaming approach, we identify five critical areas of decision-making failures that often contribute to harmful cyber events and provide recommendations for executives to rethink their approach to cyber risk management.
Paper Number
1078
Recommended Citation
Kim, Goeun; zeijlemaker, sander; Proudfoot, Jeffrey; Pal, Ranjan; and Siegel, Michael, "Balancing Risk and Reward in Cybersecurity Investment Decisions" (2025). AMCIS 2025 Proceedings. 4.
https://aisel.aisnet.org/amcis2025/sig_sec/sig_sec/4
Balancing Risk and Reward in Cybersecurity Investment Decisions
In our technology-dependent and interconnected world, the ability to govern and oversee cyber risk is essential for driving sustainable business practices. The increasing costs of and investments in cyber risk management raise questions about the capacity of organizations to strategically control these risks. Using a simulation gaming approach, we identify five critical areas of decision-making failures that often contribute to harmful cyber events and provide recommendations for executives to rethink their approach to cyber risk management.
When commenting on articles, please be friendly, welcoming, respectful and abide by the AIS eLibrary Discussion Thread Code of Conduct posted here.
Comments
SIGSEC