Cybersecurity Governance - by Kok Boon Oh & Giang Hoang & John Sturdy (Hardcover)

From the Back Cover

This book presents the practice of protecting systems, networks, and programs from digital attacks, aiming to ensure the confidentiality, integrity, and availability of a firm's networks, business systems, and data. Effective cybersecurity is not just about technological solutions but also requires robust governance measures. Drawing from academic research and the authors' professional experience in governance and cybersecurity management, this book centers on cybersecurity governance at the strategic policy-making level and its implementation throughout the organization. It emphasizes that optimizing all interdependent functions is crucial for a successful corporate strategy, adopting the concept that "the whole is greater than the sum of its parts" in cybersecurity governance.

The book aims to develop a holistic organizational cybersecurity governance framework (CGF) embedded within the enterprise risk management (ERM) function of the organization. It explores the connections, interdependencies, and complementarities between broader corporate governance practices and cybersecurity management.

Focusing on technology, finance, and human factors as key enablers, the book details how technological devices, technology management, financial disciplines, and human interactions reinforce organizational cybersecurity. It covers the use of technology for planning and implementing information security solutions, the role of financial management in enhancing cybersecurity, and the importance of human factors in the cybersecurity process. Educational features include imparting knowledge and managerial skills essential for designing, managing, and communicating an effective CGF. This book fills a gap in the literature by providing a comprehensive, strategic, and structured approach to cybersecurity governance, addressing the interdependencies and complementarities of organizational management functions for optimal information risk control.

About the Author

Dr Kok-Boon (KB) Oh is the director of eGalaxy Proprietary Limited in Melbourne, Australia. He is a chartered accountant and an academic who has taught finance, strategic management, cybersecurity, and risk management in undergraduate and postgraduate programs at Australian universities. He developed the cybersecurity governance subjects for the Bachelor of Cybersecurity and Master of Cybersecurity courses at La Trobe University, Melbourne. He has extensive experience in risk management, both through his work as an adviser, corporate executive, and academic. He has co-published over 70 peer-reviewed papers and 12 reference books in the areas of corporate governance, finance, risk management, and strategic management. He completed Harvard's VPAL Cybersecurity: Managing Risk in the Information Age program in 2018.

Dr Giang Hoang is an Assistant Lecturer at the Department of Banking and Finance and Research Associate at the Centre for Development Economics and Sustainability, Monash Business School, Monash University. She holds a bachelor's degree from Foreign Trade University (Vietnam), an MBA from the Asian Institute of Technology (Thailand), a Master of Science in International Finance from SKEMA Business School (France), and a Ph.D. focusing on Finance and Governance from La Trobe University (Australia). She has worked extensively in Vietnam's investment banking and higher education sectors. She has over 18 years of experience in financial education, research, and advisory services in various areas of finance and governance. Her previous roles have also included being an Equity Analyst at a securities company and a Finance Specialist for World Bank-financed projects.

John is an Adjunct Professor and CEO at Texila College, which is based in Melbourne, Australia. John is highly regarded as a thought leader in executive business practice. He has consulted in several countries, including China, Vietnam, Mongolia, Taiwan, Hong Kong, Malaysia, Singapore, and New Zealand. John has delivered papers and seminars locally and internationally on a range of subjects associated with the growth and development of businesses in these markets. His expertise has been acknowledged in the areas of the Talent lifecycle (i.e., Attraction, Retention, Development, and Engagement of staff), cybersecurity awareness and training, and business and strategic management.

Shuaiqi Guo is a chartered accountant and principal partner of SERVTAC, a Melbourne-based public accounting practice. Shuaiqi has practiced as a chartered accountant for over 25 years and has worked with clients on enterprise cybersecurity in her role as a corporate adviser both in Australia and overseas. Her special interests are in fintech and the financial aspects of cybersecurity.