Date of Conferral
2021
Degree
Doctor of Information Technology (D.I.T.)
School
Information Systems and Technology
Advisor
Gail Miles
Abstract
Information system security managers (ISSM) in nonprofits face increased cyberattack cases because nonprofits often use basic technology to save on costs. Nonprofit owners and managers need solutions to secure their data from cyberattacks. Grounded in the general systems theory, the purpose of this qualitative multiple case study was to explore strategies ISSMs at nonprofit organizations employ to protect against cyberattacks. Participants included five IT managers and directors of information technology in charge of security management in nonprofit organizations in Maryland, the District of Columbia, and Virginia. Data was generated through interviews and reviews of archival documents. The data analysis technique used was thematic analysis. Three themes emerged from the analysis: cybersecurity awareness, cybersecurity strategy, and third-party dependence. The nonprofits should consider the following recommendations: first, evaluate cybersecurity health by assessing the existent cyber threat environment. Second, develop and execute a comprehensive strategic plan on cybersecurity, including policies and procedures targeted at protecting sensitive and likely sensitive data. Third, evaluate in-house IT capabilities and consider hiring third-party vendors with expert skills. Fourth, create cybersecurity awareness by training the employees on data protection. The implications for positive social change include the potential for ISSMs conveying effective cybersecurity strategies for nonprofits to mitigate and prevent potential cybersecurity attacks, thus furthering the nonprofits’ missions.
Recommended Citation
Kondo, Yawo Obimpe, "Cyberattacks Strategy for Nonprofit Organizations" (2021). Walden Dissertations and Doctoral Studies. 10150.
https://scholarworks.waldenu.edu/dissertations/10150
