TY - GEN
T1 - Cybersecurity Management in Micro, Small, and Medium Enterprises in Colombia
AU - Díaz-Piraquive, Flor Nancy
AU - de Jesús Muriel-Perea, Yasser
AU - González-Crespo, Rubén
N1 - Publisher Copyright:
© 2023, The Author(s), under exclusive license to Springer Nature Switzerland AG.
PY - 2023
Y1 - 2023
N2 - The aim of this research study is the analysis of the cybersecurity management in micro, small and medium enterprises (MSMEs or MIPYMES) in Colombia. To reach this objective, the quantitative approach methodology was used, with a descriptive exploratory scope, in coherence with the research approach. To collect the information, a questionnaire was used, applied to 130 MSMEs companies from 23 states in Colombia. The results of the research study show that a considerable percentage of MSMEs in Colombia is aware of what cybersecurity is, and the main procedures that they carry out, depending on the Information Technology and Communications is about payments. The analysis leads to conclude that, while the enterprises know what cybersecurity is, they do not develop actions to mitigate risks originated from cyberattack threats. This is evident, among several other reasons, because in its great majority, they do not count with a unit in charge of managing cybersecurity, and when they make third party agreements of information services, they do not establish confidentiality agreements. These steps are essential for a safe digital transformation of MSMEs in Colombia.
AB - The aim of this research study is the analysis of the cybersecurity management in micro, small and medium enterprises (MSMEs or MIPYMES) in Colombia. To reach this objective, the quantitative approach methodology was used, with a descriptive exploratory scope, in coherence with the research approach. To collect the information, a questionnaire was used, applied to 130 MSMEs companies from 23 states in Colombia. The results of the research study show that a considerable percentage of MSMEs in Colombia is aware of what cybersecurity is, and the main procedures that they carry out, depending on the Information Technology and Communications is about payments. The analysis leads to conclude that, while the enterprises know what cybersecurity is, they do not develop actions to mitigate risks originated from cyberattack threats. This is evident, among several other reasons, because in its great majority, they do not count with a unit in charge of managing cybersecurity, and when they make third party agreements of information services, they do not establish confidentiality agreements. These steps are essential for a safe digital transformation of MSMEs in Colombia.
UR - http://www.scopus.com/inward/record.url?scp=85163349757&partnerID=8YFLogxK
UR - http://www.scopus.com/inward/citedby.url?scp=85163349757&partnerID=8YFLogxK
U2 - 10.1007/978-3-031-34045-1_8
DO - 10.1007/978-3-031-34045-1_8
M3 - Conference contribution
AN - SCOPUS:85163349757
SN - 9783031340444
T3 - Communications in Computer and Information Science
SP - 74
EP - 85
BT - Knowledge Management in Organisations - 17th International Conference, KMO 2023, Proceedings
A2 - Uden, Lorna
A2 - Ting, I-Hsien
PB - Springer Science and Business Media Deutschland GmbH
T2 - 17th International Conference on Knowledge Management in Organisations, KMO 2023
Y2 - 24 July 2023 through 27 July 2023
ER -