Paper Type
Short
Paper Number
PACIS2025-1397
Description
The rapid advancement of technology posed critical cyber security challenges to most organizations. Indonesia, Southeast Asia's largest economy, for example, has faced increasingly sophisticated cyber-attacks. Mitigating cyberattack risks requires organizations to implement a comprehensive cyber resilience strategy. Therefore, this study examines Indonesian organizations' barriers to adopting cyber resilience. We applied the Technology-Organization-Environment (TOE) framework as a guiding structure for data collection and analysis. Thirty employees were interviewed using purposive sampling, and their transcripts were analyzed via coding. Our findings identified that the technological factors require more technical training for the employees, better technology infrastructure, and funding. The organizational factors revealed the need for skilled employees, education, and regular training programs. Findings from the environmental factors showed keeping on par with changing technology and disparity with cybersecurity position with international standards. This study emphasizes the need for continued cybersecurity theory development and offers practical strategies for improving cyber resilience beyond Indonesia.
Recommended Citation
Cahyani, Niken Dwi Wahyu; Ab Rahman, Nurul Hidayah; Mubarak, Sameera; Wibowo, Santoso; and Yang, Rongbin, "Barriers to Cyber Resilience Adoption: The Indonesian Context" (2025). PACIS 2025 Proceedings. 8.
https://aisel.aisnet.org/pacis2025/security/security/8
Barriers to Cyber Resilience Adoption: The Indonesian Context
The rapid advancement of technology posed critical cyber security challenges to most organizations. Indonesia, Southeast Asia's largest economy, for example, has faced increasingly sophisticated cyber-attacks. Mitigating cyberattack risks requires organizations to implement a comprehensive cyber resilience strategy. Therefore, this study examines Indonesian organizations' barriers to adopting cyber resilience. We applied the Technology-Organization-Environment (TOE) framework as a guiding structure for data collection and analysis. Thirty employees were interviewed using purposive sampling, and their transcripts were analyzed via coding. Our findings identified that the technological factors require more technical training for the employees, better technology infrastructure, and funding. The organizational factors revealed the need for skilled employees, education, and regular training programs. Findings from the environmental factors showed keeping on par with changing technology and disparity with cybersecurity position with international standards. This study emphasizes the need for continued cybersecurity theory development and offers practical strategies for improving cyber resilience beyond Indonesia.
Comments
Security