IDEAS home Printed from https://ideas.repec.org/a/kap/jmgtgv/v21y2017i4d10.1007_s10997-016-9358-0.html
   My bibliography  Save this article

Information security governance: pending legal responsibilities of non-executive boards

Author

Listed:
  • Laura Georg

    (Norwegian University of Science and Technology NTNU)

Abstract

The study shows that a structural conflict of interest in non-executive boards exists due to missing corporate governance structures and a lack of awareness for legal issues with regard to information security risks. Non-executive boards receive information on strategic security threats as a part of their oversight function to fulfill investor interest in transparency. At the same time, they act as representatives of company stakeholders and have an interest to counteract to information security risks based on the stakeholder’s risk disposition. If not properly structured by corporate governance rules, these different interests may lead to regulatory aberrations on non-executive board level. The study analyses a Deutsche Telekom AG case where non-executive board members, employees, and journalists fell victim to a spying scandal subject to the German telecommunications secrecy law in 2005–2006. The analysis demonstrates how the handling of information security on non-executive board level bears governance risks as well as legal risks that are insufficiently addressed in corporate governance research. The paper contributes to avoid a reproduction of events in the future, by suggesting the principle of a segregation of duties on non-executive boards as well as providing an overview of relevant legislative requirements that clarify tasks of non-executive board members with regard to information security. The study therefore helps protecting corporations and their stakeholders from similar consequences of missing corporate security governance.

Suggested Citation

  • Laura Georg, 2017. "Information security governance: pending legal responsibilities of non-executive boards," Journal of Management & Governance, Springer;Accademia Italiana di Economia Aziendale (AIDEA), vol. 21(4), pages 793-814, December.
  • Handle: RePEc:kap:jmgtgv:v:21:y:2017:i:4:d:10.1007_s10997-016-9358-0
    DOI: 10.1007/s10997-016-9358-0
    as

    Download full text from publisher

    File URL: http://link.springer.com/10.1007/s10997-016-9358-0
    File Function: Abstract
    Download Restriction: Access to full text is restricted to subscribers.

    File URL: https://libkey.io/10.1007/s10997-016-9358-0?utm_source=ideas
    LibKey link: if access is restricted and if your library uses this service, LibKey will redirect you to where you can use your library subscription to access this item
    ---><---

    As the access to this document is restricted, you may want to search for a different version of it.

    References listed on IDEAS

    as
    1. Shleifer, Andrei & Vishny, Robert W, 1997. "A Survey of Corporate Governance," Journal of Finance, American Finance Association, vol. 52(2), pages 737-783, June.
    2. Roberto Di Pietra & Christos Grambovas & Ivana Raonic & Angelo Riccaboni, 2008. "The effects of board size and ‘busy’ directors on the market value of Italian companies," Journal of Management & Governance, Springer;Accademia Italiana di Economia Aziendale (AIDEA), vol. 12(1), pages 73-91, March.
    3. Morten Huse & Robert Hoskisson & Alessandro Zattoni & Riccardo Viganò, 2011. "New perspectives on board research: changing the research agenda," Journal of Management & Governance, Springer;Accademia Italiana di Economia Aziendale (AIDEA), vol. 15(1), pages 5-28, February.
    4. Puan Yatim, 2010. "Board structures and the establishment of a risk management committee by Malaysian listed firms," Journal of Management & Governance, Springer;Accademia Italiana di Economia Aziendale (AIDEA), vol. 14(1), pages 17-36, February.
    5. Joseph A. Petrick & Robert F. Scherer, 2003. "The Enron Scandal and the Neglect of Management Integrity Capacity," American Journal of Business, Emerald Group Publishing, vol. 18(1), pages 37-50.
    6. Martin Hilb, 2011. "Redesigning corporate governance: lessons learnt from the global financial crisis," Journal of Management & Governance, Springer;Accademia Italiana di Economia Aziendale (AIDEA), vol. 15(4), pages 533-538, November.
    7. Stuart Turley & Mahbub Zaman, 2004. "The Corporate Governance Effects of Audit Committees," Journal of Management & Governance, Springer;Accademia Italiana di Economia Aziendale (AIDEA), vol. 8(3), pages 305-332, June.
    8. Thomas Ahrens & Igor Filatotchev & Steen Thomsen, 2011. "The research frontier in corporate governance," Journal of Management & Governance, Springer;Accademia Italiana di Economia Aziendale (AIDEA), vol. 15(3), pages 311-325, August.
    Full references (including those not matched with items on IDEAS)

    Citations

    Citations are extracted by the CitEc Project, subscribe to its RSS feed for this item.
    as


    Cited by:

    1. Sylvie Héroux & Anne Fortin, 2024. "Board of directors’ attributes and aspects of cybersecurity disclosure," Journal of Management & Governance, Springer;Accademia Italiana di Economia Aziendale (AIDEA), vol. 28(2), pages 359-404, June.
    2. L. Georg-Schaffner & E. Prinz, 2022. "Corporate management boards’ information security orientation: an analysis of cybersecurity incidents in DAX 30 companies," Journal of Management & Governance, Springer;Accademia Italiana di Economia Aziendale (AIDEA), vol. 26(4), pages 1375-1408, December.

    Most related items

    These are the items that most often cite the same works as this one and are cited by the same works as this one.
    1. Romilda Mazzotta & Stefania Veltri, 2014. "The relationship between corporate governance and the cost of equity capital. Evidence from the Italian stock exchange," Journal of Management & Governance, Springer;Accademia Italiana di Economia Aziendale (AIDEA), vol. 18(2), pages 419-448, May.
    2. Marco Allegrini & Giulio Greco, 2013. "Corporate boards, audit committees and voluntary disclosure: evidence from Italian Listed Companies," Journal of Management & Governance, Springer;Accademia Italiana di Economia Aziendale (AIDEA), vol. 17(1), pages 187-216, February.
    3. Giulio Greco, 2011. "Determinants of board and audit committee meeting frequency: Evidence from Italian companies," Managerial Auditing Journal, Emerald Group Publishing, vol. 26(3), pages 208-229, March.
    4. Barbara, Petracci, 2011. "Trading when you cannot trade: Blackout periods in Italian firms," International Review of Law and Economics, Elsevier, vol. 31(3), pages 196-204, September.
    5. Hanen Khemakhem & Richard Fontaine & Nadia Smaili & Mahbub Zaman, 2023. "Whistleblowing regulations and the role of audit committees: insight from interviews," Journal of Management & Governance, Springer;Accademia Italiana di Economia Aziendale (AIDEA), vol. 27(1), pages 131-151, March.
    6. Carlo Regoliosi & Alessandro d’Eri, 2014. "“Good” corporate governance and the quality of internal auditing departments in Italian listed firms. An exploratory investigation in Italian listed firms," Journal of Management & Governance, Springer;Accademia Italiana di Economia Aziendale (AIDEA), vol. 18(3), pages 891-920, August.
    7. Lélis Pedro Andrade & Aureliano Angel Bressan & Robert Aldo Iquiapaza, 2017. "Dual class shares, board of directors’ effectiveness and firm’s market value: an empirical study," Journal of Management & Governance, Springer;Accademia Italiana di Economia Aziendale (AIDEA), vol. 21(4), pages 1053-1092, December.
    8. Paul Anglin & Robert Edelstein & Yanmin Gao & Desmond Tsang, 2013. "What is the Relationship Between REIT Governance and Earnings Management?," The Journal of Real Estate Finance and Economics, Springer, vol. 47(3), pages 538-563, October.
    9. Hanene Ezzine, 2018. "Corporate governance and social norms during financial crisis: evidence from France and Saudi Arabia," Journal of Management & Governance, Springer;Accademia Italiana di Economia Aziendale (AIDEA), vol. 22(3), pages 707-748, September.
    10. Franco Ernesto Rubino & Paolo Tenuta & Domenico Rocco Cambrea, 2017. "Board characteristics effects on performance in family and non-family business: a multi-theoretical approach," Journal of Management & Governance, Springer;Accademia Italiana di Economia Aziendale (AIDEA), vol. 21(3), pages 623-658, September.
    11. Wang, Boya, 2018. "Ownership, institutions and firm value: Cross-provincial evidence from China," Research in International Business and Finance, Elsevier, vol. 44(C), pages 547-565.
    12. Chahine, Salim & Filatotchev, Igor, 2011. "The effects of corporate governance and audit and non-audit fees on IPO Value," The British Accounting Review, Elsevier, vol. 43(3), pages 155-172.
    13. Alessandro Hinna & Fabio Monteduro, 2017. "Boards, governance and value creation in grant-giving foundations," Journal of Management & Governance, Springer;Accademia Italiana di Economia Aziendale (AIDEA), vol. 21(4), pages 935-961, December.
    14. Maria Consuelo Pucheta‐Martínez & Cristina De Fuentes, 2007. "The Impact of Audit Committee Characteristics on the Enhancement of the Quality of Financial Reporting: an empirical study in the Spanish context," Corporate Governance: An International Review, Wiley Blackwell, vol. 15(6), pages 1394-1412, November.
    15. Henrique Castro Martins & Cristiano Machado Costa, 2020. "Does control concentration affect board busyness? International evidence," Journal of Management & Governance, Springer;Accademia Italiana di Economia Aziendale (AIDEA), vol. 24(3), pages 821-850, September.
    16. Boya Wang, 2016. "Ownership, Institutions & Firm Value: Cross-Provincial Evidence from China," Working Papers wp484, Centre for Business Research, University of Cambridge.
    17. Patrick Velte, 2010. "The link between supervisory board reporting and firm performance in Germany and Austria," European Journal of Law and Economics, Springer, vol. 29(3), pages 295-331, June.
    18. Nguyen Van Tuan & Nguyen Anh Tuan, 2016. "Corporate Governance Structures And Performance Of Firms In Asian Markets: A Comparative Analysis Between Singapore And Vietnam," Organizations and Markets in Emerging Economies, Faculty of Economics, Vilnius University, vol. 7(2).
    19. Francesca Rossignoli & Andrea Lionzo & Bruno Buchetti, 2021. "Beyond corporate governance reporting: the usefulness of information on board member profiles," Journal of Management & Governance, Springer;Accademia Italiana di Economia Aziendale (AIDEA), vol. 25(1), pages 27-60, March.
    20. Niamh M. Brennan & Collette E. Kirwan, 2015. "Audit committees: practices, practitioners and praxis of governance," Accounting, Auditing & Accountability Journal, Emerald Group Publishing Limited, vol. 28(4), pages 466-493, May.

    Corrections

    All material on this site has been provided by the respective publishers and authors. You can help correct errors and omissions. When requesting a correction, please mention this item's handle: RePEc:kap:jmgtgv:v:21:y:2017:i:4:d:10.1007_s10997-016-9358-0. See general information about how to correct material in RePEc.

    If you have authored this item and are not yet registered with RePEc, we encourage you to do it here. This allows to link your profile to this item. It also allows you to accept potential citations to this item that we are uncertain about.

    If CitEc recognized a bibliographic reference but did not link an item in RePEc to it, you can help with this form .

    If you know of missing items citing this one, you can help us creating those links by adding the relevant references in the same way as above, for each refering item. If you are a registered author of this item, you may also want to check the "citations" tab in your RePEc Author Service profile, as there may be some citations waiting for confirmation.

    For technical questions regarding this item, or to correct its authors, title, abstract, bibliographic or download information, contact: Sonal Shukla or Springer Nature Abstracting and Indexing (email available below). General contact details of provider: http://www.springer.com .

    Please note that corrections may take a couple of weeks to filter through the various RePEc services.

    IDEAS is a RePEc service. RePEc uses bibliographic data supplied by the respective publishers.