AbstractsBusiness Management & Administration

Relationship between Corporate Governance and Information Security Governance Effectiveness in United States Corporations

by Robert Elliot Davis

Institution: Walden University
Department: School of Management
Degree: Doctorate Degree
Year: 2017
Keywords: Corporate Governace, Information Security Governance, Quantitative Research
Posted: 09/07/2019
Record ID: 2222195
Full text PDF: https://www.semanticscholar.org/paper/Relationship-between-Corporate-Governance-and-in-Davis/f10e36098ebee47fd069d59a118ea3f1891baec2


Cyber attackers targeting large corporations achieved a high perimeter penetration success rate during 2013, resulting in many corporations incurring financial losses. Corporate information technology leaders have a fiduciary responsibility to implement information security domain processes that effectually address the challenges for preventing and deterring information security breaches. Grounded in corporate governance theory, the purpose of this correlational study was to examine the relationship between strategic alignment, resource management, risk management, value delivery, performance measurement implementations, and information security governance (ISG) effectiveness in United States-based corporations. Surveys were used to collect data from 95 strategic and tactical leaders of the 500 largest for-profit United States headquartered corporations. The results of the multiple linear regression indicated the model was able to significantly predict ISG effectiveness, F(5, 89) = 3.08, p = 0.01, R² = 0.15. Strategic alignment was the only statistically significant (t = 2.401, p <= 0.018) predictor. The implications for positive social change include the potential to constructively understand the correlates of ISG effectiveness, thus increasing the propensity for consumer trust and reducing consumers’ costs.