{"title":"When traditional SME managers encounter cybersecurity: Discourse analysis of opportunities and dilemmas in meeting the demands","authors":"Yang Hoong , Davar Rezania , Ron Baker","doi":"10.1016/j.techsoc.2024.102650","DOIUrl":null,"url":null,"abstract":"<div><p>Grounded in a socio-technical systems governance framework, we explore the perceptions and strategies of SME managers and cybersecurity providers within the cybersecurity landscape. Addressing the gap in understanding of how cybersecurity governance takes place in the Canadian SME landscape, Interviews were conducted with 35 SME representatives and 11 cybersecurity providers and analyzed using discourse analysis. The results highlight four critical themes in this socio-technical transition: initial conditions, SME business model discourse, cybersecurity provider business model discourse, and transition outcomes. The transition underpins a mode of governance, blending elements of oligopoly and self-regulation, characterized by the dominance of key cybersecurity firms and a more facilitative role of state actors. A novel conceptual model emerges from the study, explicating the transition in SME institutional logics from a traditional ‘legacy logic’ towards an integrated cybersecurity approach. This transition is shaped by the principal-agent disconnect and moderated by SME and cybersecurity provider business model discourses.</p></div>","PeriodicalId":47979,"journal":{"name":"Technology in Society","volume":"78 ","pages":"Article 102650"},"PeriodicalIF":10.1000,"publicationDate":"2024-07-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"https://www.sciencedirect.com/science/article/pii/S0160791X24001982/pdfft?md5=9ad51b8634b60e83a7a2dfa4af8643cd&pid=1-s2.0-S0160791X24001982-main.pdf","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"Technology in Society","FirstCategoryId":"90","ListUrlMain":"https://www.sciencedirect.com/science/article/pii/S0160791X24001982","RegionNum":1,"RegionCategory":"社会学","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"Q1","JCRName":"SOCIAL ISSUES","Score":null,"Total":0}
引用次数: 0
Abstract
Grounded in a socio-technical systems governance framework, we explore the perceptions and strategies of SME managers and cybersecurity providers within the cybersecurity landscape. Addressing the gap in understanding of how cybersecurity governance takes place in the Canadian SME landscape, Interviews were conducted with 35 SME representatives and 11 cybersecurity providers and analyzed using discourse analysis. The results highlight four critical themes in this socio-technical transition: initial conditions, SME business model discourse, cybersecurity provider business model discourse, and transition outcomes. The transition underpins a mode of governance, blending elements of oligopoly and self-regulation, characterized by the dominance of key cybersecurity firms and a more facilitative role of state actors. A novel conceptual model emerges from the study, explicating the transition in SME institutional logics from a traditional ‘legacy logic’ towards an integrated cybersecurity approach. This transition is shaped by the principal-agent disconnect and moderated by SME and cybersecurity provider business model discourses.
期刊介绍:
Technology in Society is a global journal dedicated to fostering discourse at the crossroads of technological change and the social, economic, business, and philosophical transformation of our world. The journal aims to provide scholarly contributions that empower decision-makers to thoughtfully and intentionally navigate the decisions shaping this dynamic landscape. A common thread across these fields is the role of technology in society, influencing economic, political, and cultural dynamics. Scholarly work in Technology in Society delves into the social forces shaping technological decisions and the societal choices regarding technology use. This encompasses scholarly and theoretical approaches (history and philosophy of science and technology, technology forecasting, economic growth, and policy, ethics), applied approaches (business innovation, technology management, legal and engineering), and developmental perspectives (technology transfer, technology assessment, and economic development). Detailed information about the journal's aims and scope on specific topics can be found in Technology in Society Briefings, accessible via our Special Issues and Article Collections.