Evaluating the People, Process, and Technology Priorities for NIST Cybersecurity Framework Implementation in E-Government
Eko Yon Handri, Prasetyo Adi Wibowo Putro, Dana Indra Sensuse
Abstract
Implementing a cybersecurity framework plays a critical role in protecting e-government systems and infrastructure from cyber threats and attacks. However, there is no consensus on prioritizing the five core components: identify, protect, detect, respond, and recover. It is also unclear whether these components should be implemented equally or customized. Similarly, no agreement exists on the importance of people, processes, and technology in implementing a cybersecurity framework This paper aims to address this gap by evaluating and comparing the priorities of the five core components and three aspects using the Analytic Hierarchy Process (AHP). The evaluation outcomes emphasize that the identify component takes precedence over the other core components, underscoring the significance of preventive measures against cyberattacks. In addition, the people aspect received the highest priority among the three implementation aspects, which highlighted the critical role of individuals in successfully implementing process-related measures and leveraging technological advancements. This research provides valuable insights for designing strategies and implementing effective and sustainable cybersecurity measures in e-government. By prioritizing the identify component and recognizing the importance of people, organizations can improve their ability to protect against threats and ensure the resilience of e-government systems.