Abstract
Cybercrime is a pressing concern for governments and businesses around the globe, but little is known about what policy interventions work to prevent and mitigate threats to organizations. Thus, empirical studies on cybercrime prevention policies and tools are needed to understand their effectiveness and to improve implementation and evaluation. This article analyzes whether two UK government schemes aimed at encouraging and helping businesses to adopt cybersecurity controls and policies ('Cyber Essentials’ and ‘10 Steps to Cyber Security’) are associated with safer organizational behavior and whether adopting the recommended measures is related to lower levels of cybercrime victimization and its impacts. Bayesian model averaging is employed on a representative sample of 5,872 businesses from four rounds (2018–2021) of the UK Government's Cyber Security Breaches Survey. The results show that awareness of the Government schemes is associated with more cyber secure practices, but we do not find evidence of lower likelihood of victimization or negative consequences for companies that implement the recommended measures. Findings are discussed in relation to policy, practice and future research.
Sign-in/Register to access full text options 
Talk to us
Join us for a 30 min session where you can share your feedback and ask us any queries you have
Schedule a callDisclaimer: All third-party content on this website/platform is and will remain the property of their respective owners and is provided on "as is" basis without any warranties, express or implied. Use of third-party content does not indicate any affiliation, sponsorship with or endorsement by them. Any references to third-party content is to identify the corresponding services and shall be considered fair use under The CopyrightLaw.
