Abstract

Firms have increasingly invested in information technology (IT) security to protect their information resources. Nevertheless, deciding when to invest in IT security is rather difficult for executives because of the irreversibility of spending and uncertainty of IT security investments performance. A review of the literature on IT security investments reveals that previous studies largely neglected the strategy and timing of investments. Basing on real options theory, this research examines IT security investments for the commercial exploitation strategy versus the IT security improvement strategy in terms of proactive and reactive investments. An event methodology is used to estimate the effect of IT security investment timing on the stock performance of the investments. Our results show that reactive investments for IT security improvement and proactive investments for commercial exploitation earn positive abnormal returns. Moreover, the market reacts more positively to aligned than misaligned IT security investments. The implications of the research findings are presented and discussed.

Talk to us

Join us for a 30 min session where you can share your feedback and ask us any queries you have

Schedule a call

Similar Papers

Paper Title
Journal
Date
Author
Which IT Security Investments Will Pay Off for Suppliers? Using the Kano Model to Determine Customers' Willingness to Pay
Rabea Sonnenschein ... Andre Loske
-
Rabea Sonnenschein, et. al.Rabea Sonnenschein ... Andre Loske
01 Jan 2015
The Roles of IT Strategies and Security Investments in Reducing Organizational Security Breaches
He Li ... William J Kettinger
Journal of Management Information Systems | VOL. 38
He Li, et. al.He Li ... William J Kettinger
02 Jan 2020
A formal qualitative risk management approach for IT security
Bessy Mahopo ... Mathias Mujinga
-
Bessy Mahopo, et. al.Bessy Mahopo ... Mathias Mujinga
01 Aug 2015
Decision-Theoretic and Game-Theoretic Approaches to IT Security Investment
Huseyin Cavusoglu ... Wei T Yue
Journal of Management Information Systems | VOL. 25
Huseyin Cavusoglu, et. al.Huseyin Cavusoglu ... Wei T Yue
01 Sep 2008
View more papers

More From: Information Systems Frontiers

Paper Title
Journal
Date
Author
AI in the Organizational Nexus: Building Trust, Cementing Commitment, and Evolving Psychological Contracts
Muhammad Farrukh Moin ... Amit Shankar
Information Systems Frontiers | VOL. -
Muhammad Farrukh Moin, et. al.Muhammad Farrukh Moin ... Amit Shankar
15 Nov 2024
A Grey Combined Prediction Model for Medical Treatment Risk Analysis during Pandemics
R Rajesh
Information Systems Frontiers | VOL. -
R RajeshR Rajesh
11 Nov 2024
Stress Level Assessment by a Multi-Parametric Wearable Platform: Relevance of Different Physiological Signals
Beatrice De Marchi ... Andrea Aliverti
Information Systems Frontiers | VOL. -
Beatrice De Marchi, et. al.Beatrice De Marchi ... Andrea Aliverti
06 Nov 2024
Classifying DSS Research – A Theoretical Framework
Rahul Kumar ... Rahul Thakurta
Information Systems Frontiers | VOL. -
Rahul Kumar, et. al.Rahul Kumar ... Rahul Thakurta
04 Nov 2024
View more papers

Disclaimer: All third-party content on this website/platform is and will remain the property of their respective owners and is provided on "as is" basis without any warranties, express or implied. Use of third-party content does not indicate any affiliation, sponsorship with or endorsement by them. Any references to third-party content is to identify the corresponding services and shall be considered fair use under The CopyrightLaw.