Assessing Cybersecurity Readiness Among SME

Bjarne Lill; Clemens Sauerwein; Alexander Zeisler; Carina Hochstrasser; Nico Mexis

doi:10.5220/0013353400003929

Assessing Cybersecurity Readiness Among SME

Bjarne Lill, Clemens Sauerwein, Alexander Zeisler, Carina Hochstrasser, Nico Mexis

2025

Abstract

Information security is a critical issue for small and medium-sized enterprises (SMEs) around the world. These organisations face an increasing number of security incidents and the sophistication of attacks. In order to remain competitive and protect their and their customers’ critical information, it is essential that SMEs can manage their cybersecurity risks appropriately. Accordingly, it is important that these SMEs can rely on tailored information security assessments and frameworks. However, there is a scarcity of knowledge regarding their specific needs and the practical implementation of cybersecurity within these organisations. To address this knowledge gap, an exploratory study was conducted on the SME cybersecurity situation, with a particular focus on the implementation level of cybersecurity controls within SMEs in Austria and Germany. We surveyed 30 SMEs regarding their cybersecurity implementation situation in 2023. Our findings show, among other things, a very heterogeneous picture regarding the implementation level of cybersecurity controls and outline areas for action.

Download

Paper Citation

in Harvard Style

Lill B., Sauerwein C., Zeisler A., Hochstrasser C. and Mexis N. (2025). Assessing Cybersecurity Readiness Among SME. In Proceedings of the 27th International Conference on Enterprise Information Systems - Volume 2: ICEIS; ISBN 978-989-758-749-8, SciTePress, pages 253-263. DOI: 10.5220/0013353400003929

in Bibtex Style

@conference{iceis25,
author={Bjarne Lill and Clemens Sauerwein and Alexander Zeisler and Carina Hochstrasser and Nico Mexis},
title={Assessing Cybersecurity Readiness Among SME},
booktitle={Proceedings of the 27th International Conference on Enterprise Information Systems - Volume 2: ICEIS},
year={2025},
pages={253-263},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0013353400003929},
isbn={978-989-758-749-8},
}

in EndNote Style

TY - CONF

JO - Proceedings of the 27th International Conference on Enterprise Information Systems - Volume 2: ICEIS
TI - Assessing Cybersecurity Readiness Among SME
SN - 978-989-758-749-8
AU - Lill B.
AU - Sauerwein C.
AU - Zeisler A.
AU - Hochstrasser C.
AU - Mexis N.
PY - 2025
SP - 253
EP - 263
DO - 10.5220/0013353400003929
PB - SciTePress