Advanced search
Publication Cover
European Journal of Information Systems Volume 33, 2024 - Issue 2
Submit an article Journal homepage
1,503
Views
0
CrossRef citations to date
0
Altmetric
Research Article

Enabling cybersecurity incident response agility through dynamic capabilities: the role of real-time analytics

Humza Naseera School of Accounting, Information Systems, and Supply Chain, RMIT University, Melbourne, AustraliaCorrespondence[email protected]
,
Kevin Desouzab QUT Business School, Queensland University of Technology, Brisbane, AusraliaORCID Iconhttps://orcid.org/0000-0002-4734-3081
ORCID Icon,
Sean B. Maynardc School of Computing and Information Systems, The University of Melbourne, Melbourne, AustraliaORCID Iconhttps://orcid.org/0000-0003-2044-8163
ORCID Icon &
Atif Ahmadc School of Computing and Information Systems, The University of Melbourne, Melbourne, Australia
Pages 200-220 | Received 21 May 2020, Accepted 05 Sep 2023, Published online: 11 Sep 2023
 
Sample our Economics, Finance,Business & Industry journals, sign in here to start your access, latest two full volumes FREE to you for 14 days

ABSTRACT

We explore how organisations enable agility in their cybersecurity incident response (IR) process by developing dynamic capabilities using real-time analytics (RTA). Drawing on RTA practices in the IR process at three large financial organisations, we develop a framework to explain how IR teams respond to the rapidly evolving cyber threat environment by developing RTA-based microfoundations that underpin the building of sensing, seizing, and transforming dynamic IR capabilities. These dynamic IR capabilities in turn help organisations to enable agility in their IR processes by leveraging swift, flexible, and innovative IR strategies, including active threat reconnaissance, active threat defence, and pervasive learning. Our findings have implications for the discourse on cybersecurity because we demystify the black box of IR agility, for our understanding of the use of RTA to enable agility in IR, and for the discourse on dynamic capabilities.

Disclosure statement

No potential conflict of interest was reported by the author(s).

Notes

1. Some of the informants used additional tools such as whiteboard/marker, pen/paper, and posters already displayed in the interview space to further elaborate their responses. We photographed this supplementary material after seeking consent.

Log in via your institution

Access through your institution

Log in to Taylor & Francis Online

Restore content access

Restore content access for purchases made as guest
Purchase options * Save for later

PDF download + Online access

  • 48 hours access to article PDF & online version
  • Article PDF can be downloaded
  • Article PDF can be printed
USD 61.00 Add to cart

Issue Purchase

  • 30 days online access to complete issue
  • Article PDFs can be downloaded
  • Article PDFs can be printed
USD 337.00 Add to cart

* Local tax will be added as applicable

Related Research

People also read lists articles that other readers of this article have read.

Recommended articles lists articles that we recommend and is powered by our AI driven recommendation engine.

Cited by lists all citing articles based on Crossref citations.
Articles with the Crossref icon will open in a new tab.