Towards A Methodology for Understanding Cyber Resilience Maturity in Organisations: A Design Science Approach

As organisations pay increasing attention to cyber security due to the increasing threat of cyberattacks (Bendovschi, 2015; Lallie et al., 2021), the concept of cyber resilience is gradually becoming an important consideration (Bellini & Marrone, 2020). This study focuses on the challenge organisations face in cyber resilience management. It aims to design a methodology that assists them in understanding cyber resilience and positioning their maturity level by assessing implemented practices. The methodology – Cyber Resilience Maturity Assessment Methodology (CRMAM) – is designed following the Design Science Research approach proposed by Peffers et al. (2007) and evaluated by representatives from different industries. It analyses and interprets cyber resilience management from a high-level perspective, providing a quick assessment of the current maturity position and decision-making support of the future detailed framework adoption for organisations that do not have sufficient technology and financial support.