University of Worcester Worcester Research and Publications

SMEs Attitudes to “Information Assurance” and Consequences for the Digital Single Market

Henson, Richard and Garfield, Joy (2017) SMEs Attitudes to “Information Assurance” and Consequences for the Digital Single Market. Athens: ATINER'S Conference Paper Series, No: SME2016-2278. pp. 1-19. ISSN 2241-2891

[img] Text
SMEs attitudes to Information Assurance and consequences for the Digital Single Market.pdf - Submitted Version
Restricted to Repository staff only
Available under License Creative Commons Attribution Non-commercial.

Download (155kB) | Request a copy
SME2016-2278.pdf - Published Version
Available under License Creative Commons Attribution Non-commercial.

Download (466kB) | Preview


It is now generally accepted that cyber crime represents a big threat to organisations, and that they need to take appropriate action to protect their valuable information assets. However, current research shows that, although small businesses understand that they are potentially vulnerable, many are still not taking sufficient action to counteract the threat.

Last year, the authors sought, through a more generalised but categorised attitudinal study, to explore the reasons why smaller SMEs in particular were reluctant to engage with accepted principles for protecting their data. The results showed that SMEs understood many of the issues. They were prepared to spend more but were particularly suspicious about spending on information assurance.

The authors’ current research again focuses on SME attitudes but this time the survey asks only questions directly relating to information assurance and the standards available, in an attempt to try to understand exactly what is causing them to shy away from getting the badge or certificate that would demonstrate to customers and business partners that they take cyber security seriously.

As with last year’s study, the results and analysis provide useful pointers towards the broader business environment changes that might cause SMEs to be more interested in working towards an appropriate cyber security standard.

Item Type: Article
Additional Information:

The full-text of the online published paper can be accessed via the Official URL.

Uncontrolled Discrete Keywords: SME, Information Assurance, standards, cyber crime, Digital Single Market, GDPR, cyber security, attitudes, cyber liability insurance, compliance, certification, PCI-DSS, Cyber Essentials, IASME, ISO27001
Subjects: H Social Sciences > H Social Sciences (General)
Divisions: College of Business, Psychology and Sport > Worcester Business School
Related URLs:
Copyright Info: Open Access journal article
Depositing User: Richard Henson
Date Deposited: 13 Sep 2016 13:59
Last Modified: 17 Jun 2020 17:13

Actions (login required)

View Item View Item
Worcester Research and Publications is powered by EPrints 3 which is developed by the School of Electronics and Computer Science at the University of Southampton. More information and software credits.