A MATURITY FRAMEWORK FOR CYBERSECURITY GOVERNANCE IN ORGANIZATIONS
Yassine Maleh, Abdelkebir Sahid, Mustapha Belaissaoui
Abstract
Digitalization necessarily leads organizations to rethink their cybersecurity principles in order to counter all the risks inherent in cybercrime. Cybersecurity governance brings together all the essential elements of cyber defense and effective risk management. Without such governance, dangerous gaps persist, and assets are inevitably compromised. Given the critical decisions that need to be made in an ever-changing cyber threat environment, cybersecurity standards are a critical way for companies to ensure that their security strategy and policies are consistently and measurably implemented. The aim of this paper is to propose a capability maturity framework to assess and improve cybersecurity governance in organizations. The finding will help organizations to evaluate their cybersecurity governance capabilities.