Does CIO Risk Appetite Matter? Evidence from Information Security Breach Incidents

After a series of recent high-profile information security breach incidents, practitioners have engaged in heated debates about the role of the chief information officer (CIO), particularly his/her role in information security risk management. However, little is known in the academic literature about how a CIO’s appetite for risk affects the effectiveness of information security management. We address this gap by examining how a CIO’s risk appetite is associated with information security breach incidents. We show that the level of CIO risk aversion is negatively associated with the likelihood of breach incidents. Furthermore, we find that this association is stronger if the company’s chief executive officer (CEO) is also risk averse. In additional analyses, we show that the relationship between CIO risk aversion and breach incidents varies depending on breach type and the strategic position of the company and is moderated by the CIO’s power

MoreLess

Year of publication:	[2021]
Authors:	Feng, Cecilia (Qian) ; Wang, Tawei
Publisher:	[S.l.] : SSRN
Subject:	Datensicherheit \| Data security \| Informationsmanagement \| Information management \| Führungskräfte \| Managers

freely available

Full text |

More access options

Check Google Scholar

In German libraries (KVK)

I need help

Extent:	1 Online-Ressource (41 p)
Type of publication:	Book / Working Paper
Language:	English
Notes:	In: International Journal of Accounting Information Systems, Volume 32, March 2019, Pages 59-75 Nach Informationen von SSRN wurde die ursprüngliche Fassung des Dokuments October 1, 2018 erstellt
Source:	ECONIS - Online Catalogue of the ZBW

Persistent link: https://www.econbiz.de/10013246451