Dr NEESHE KHAN NEESHE.KHAN1@NOTTINGHAM.AC.UK
Research Fellow in Cyber Security
Assessing Cyber Security Support for Small and Medium-Sized Enterprises
Khan, Neeshe; Furnell, Steven; Bada, Maria; Nurse, Jason R.C.; Rand, Matthew
Authors
Professor STEVEN FURNELL STEVEN.FURNELL@NOTTINGHAM.AC.UK
PROFESSOR OF CYBER SECURITY
Maria Bada
Jason R.C. Nurse
Matthew Rand
Abstract
Small and Medium-Sized Enterprises (SMEs) share many of the same cyber security needs and challenges as larger organisations, but often have significantly less knowledge and capability to deal with them. One of the fundamental issues can be where to find information in the first instance, to explain the nature of cyber threats and the subsequent actions that SMEs should be taking. In many cases, the natural route for interested or concerned SMEs is to seek and refer to related guidance that can be found online. However, this in itself can be a challenge considering the volume and variety of sources that can be located as a consequence. This paper investigates and analyses the situation, based upon a sample of over 30 UK-based guidance sources, and an assessment of their coverage, completeness and clarity. The results reveal that there is indeed a significant diversity in the materials that SMEs may be presented with, and this in turn could lead to inconsistent and potentially ill-informed decision-making. Additionally, in many cases, there will be a limit to how far the online support will take them, with the potential that questions remain unresolved, and SMEs could be more confused as a result of their efforts.
Citation
Khan, N., Furnell, S., Bada, M., Nurse, J. R., & Rand, M. (2025). Assessing Cyber Security Support for Small and Medium-Sized Enterprises. In Human Aspects of Information Security and Assurance: 18th IFIP WG 11.12 International Symposium, HAISA 2024, Skövde, Sweden, July 9–11, 2024, Proceedings, Part I (148-162). Springer. https://doi.org/10.1007/978-3-031-72559-3_11
| Acceptance Date | May 29, 2024 |
|---|---|
| Online Publication Date | Nov 28, 2024 |
| Publication Date | 2025 |
| Deposit Date | Jul 29, 2024 |
| Publicly Available Date | Nov 29, 2025 |
| Publisher | Springer |
| Peer Reviewed | Peer Reviewed |
| Pages | 148-162 |
| Series Title | IFIP Advances in Information and Communication Technology |
| Series ISSN | 1868-4238 |
| Book Title | Human Aspects of Information Security and Assurance: 18th IFIP WG 11.12 International Symposium, HAISA 2024, Skövde, Sweden, July 9–11, 2024, Proceedings, Part I |
| ISBN | 9783031725586 |
| DOI | https://doi.org/10.1007/978-3-031-72559-3_11 |
| Public URL | https://nottingham-repository.worktribe.com/output/37864378 |
| Publisher URL | https://link.springer.com/chapter/10.1007/978-3-031-72559-3_11 |
Files
This file is under embargo until Nov 29, 2025 due to copyright restrictions.
You might also like
Pre-Signature Scheme for Trustworthy Offline V2V Communication
(2023)
Presentation / Conference Contribution
Automatically Labeling Cyber Threat Intelligence reports using Natural Language Processing
(2023)
Presentation / Conference Contribution
Evaluation of Contextual and Game-Based Training for Phishing Detection
(2022)
Journal Article
Accessible authentication: Assessing the applicability for users with disabilities
(2021)
Journal Article
Developing a cyber security culture: Current practices and future needs
(2021)
Journal Article
Downloadable Citations
About Repository@Nottingham
Administrator e-mail: discovery-access-systems@nottingham.ac.uk
This application uses the following open-source libraries:
SheetJS Community Edition
Apache License Version 2.0 (http://www.apache.org/licenses/)
PDF.js
Apache License Version 2.0 (http://www.apache.org/licenses/)
Font Awesome
SIL OFL 1.1 (http://scripts.sil.org/OFL)
MIT License (http://opensource.org/licenses/mit-license.html)
CC BY 3.0 ( http://creativecommons.org/licenses/by/3.0/)
Powered by Worktribe © 2024
Advanced Search