Supplier Development Framework in Supply Chain Cybersecurity Evaluation of Small and Medium-sized Enterprises
Modern organizations rely on suppliers to meet customer needs and improve operations. However, the interconnectedness between organizations and their suppliers, brought about by digital transformation, has led to an increase in significant cyber breaches. To mitigate these risks, organizations use v...
| Main Author: | |
|---|---|
| Other Authors: | |
| Format: | Thesis |
| Published: |
Massachusetts Institute of Technology
2023
|
| Online Access: | https://hdl.handle.net/1721.1/151555 |
| _version_ | 1811097994102046720 |
|---|---|
| author | Chang, Erh Chieh |
| author2 | Pearlson, Keri |
| author_facet | Pearlson, Keri Chang, Erh Chieh |
| author_sort | Chang, Erh Chieh |
| collection | MIT |
| description | Modern organizations rely on suppliers to meet customer needs and improve operations. However, the interconnectedness between organizations and their suppliers, brought about by digital transformation, has led to an increase in significant cyber breaches. To mitigate these risks, organizations use various methods and tools to both assess and monitor potential threats. Despite this, a gap exists between assessment and monitoring/improvement. The objective of this study is to address the gap between cybersecurity assessment and monitoring/improvement by developing a supplier development process in the supply chain that enhances the cybersecurity capability of small and medium enterprise (SME) suppliers. The theoretical framework is built on a literature review, anecdote evidence and best practices in supply chain management, and feedback from industry experts. The framework is a four-stage process that enhances the cybersecurity capability of SME suppliers by improving their security posture, providing training, and fostering collaboration between suppliers and clients. The study highlights the importance of collaborative capability building between client organizations and suppliers to improve cybersecurity. Future research can focus on developing this concept further and exploring its implementation in various industries. |
| first_indexed | 2024-09-23T17:08:17Z |
| format | Thesis |
| id | mit-1721.1/151555 |
| institution | Massachusetts Institute of Technology |
| last_indexed | 2024-09-23T17:08:17Z |
| publishDate | 2023 |
| publisher | Massachusetts Institute of Technology |
| record_format | dspace |
| spelling | mit-1721.1/1515552023-08-01T03:01:29Z Supplier Development Framework in Supply Chain Cybersecurity Evaluation of Small and Medium-sized Enterprises Chang, Erh Chieh Pearlson, Keri System Design and Management Program. Modern organizations rely on suppliers to meet customer needs and improve operations. However, the interconnectedness between organizations and their suppliers, brought about by digital transformation, has led to an increase in significant cyber breaches. To mitigate these risks, organizations use various methods and tools to both assess and monitor potential threats. Despite this, a gap exists between assessment and monitoring/improvement. The objective of this study is to address the gap between cybersecurity assessment and monitoring/improvement by developing a supplier development process in the supply chain that enhances the cybersecurity capability of small and medium enterprise (SME) suppliers. The theoretical framework is built on a literature review, anecdote evidence and best practices in supply chain management, and feedback from industry experts. The framework is a four-stage process that enhances the cybersecurity capability of SME suppliers by improving their security posture, providing training, and fostering collaboration between suppliers and clients. The study highlights the importance of collaborative capability building between client organizations and suppliers to improve cybersecurity. Future research can focus on developing this concept further and exploring its implementation in various industries. S.M. 2023-07-31T19:48:18Z 2023-07-31T19:48:18Z 2023-06 2023-06-23T19:53:59.032Z Thesis https://hdl.handle.net/1721.1/151555 In Copyright - Educational Use Permitted Copyright retained by author(s) https://rightsstatements.org/page/InC-EDU/1.0/ application/pdf Massachusetts Institute of Technology |
| spellingShingle | Chang, Erh Chieh Supplier Development Framework in Supply Chain Cybersecurity Evaluation of Small and Medium-sized Enterprises |
| title | Supplier Development Framework in Supply Chain Cybersecurity Evaluation of Small and Medium-sized Enterprises |
| title_full | Supplier Development Framework in Supply Chain Cybersecurity Evaluation of Small and Medium-sized Enterprises |
| title_fullStr | Supplier Development Framework in Supply Chain Cybersecurity Evaluation of Small and Medium-sized Enterprises |
| title_full_unstemmed | Supplier Development Framework in Supply Chain Cybersecurity Evaluation of Small and Medium-sized Enterprises |
| title_short | Supplier Development Framework in Supply Chain Cybersecurity Evaluation of Small and Medium-sized Enterprises |
| title_sort | supplier development framework in supply chain cybersecurity evaluation of small and medium sized enterprises |
| url | https://hdl.handle.net/1721.1/151555 |
| work_keys_str_mv | AT changerhchieh supplierdevelopmentframeworkinsupplychaincybersecurityevaluationofsmallandmediumsizedenterprises |