Next Article in Journal
An Improved SAMP Algorithm for Sparse Channel Estimation in OFDM System
Previous Article in Journal
Vehicle State Estimation Combining Physics-Informed Neural Network and Unscented Kalman Filtering on Manifolds
Previous Article in Special Issue
The Application of a Self-Made Integrated Three-in-One Microsensor and Commercially Available Wind Speed Sensor to the Cold Air Pipe of the Heating, Ventilation, and Air Conditioning in a Factory for Real-Time Wireless Measurement
 
 
Search for Articles:
Title / Keyword
Author / Affiliation / Email
Journal
Article Type
 
 
Advanced Search
 
Section
Special Issue
Volume
Issue
Number
Page
 
Journals
Sensors
Volume 23
Issue 15
10.3390/s23156666
sensors-logo
Submit to this Journal Review for this Journal Propose a Special Issue
Article Menu

Article Menu

share Share announcement Help format_quote Cite question_answer Discuss in SciProfiles thumb_up
...
Endorse textsms
...
Comment
first_page
settings
Order Article Reprints
Font Type:
Arial Georgia Verdana
Font Size:
Aa Aa Aa
Line Spacing:
Column Width:
Background:
Review

Digital Transformation and Cybersecurity Challenges for Businesses Resilience: Issues and Recommendations

by
Saqib Saeed
1,*,
Salha A. Altamimi
2,
Norah A. Alkayyal
2,
Ebtisam Alshehri
2 and
Dina A. Alabbad
3
1
Saudi Aramco Cybersecurity Chair, Department of Computer Information Systems, College of Computer Science and Information Technology, Imam Abdulrahman Bin Faisal University, P.O. Box 1982, Dammam 31441, Saudi Arabia
2
Department of Computer Information Systems, College of Computer Science and Information Technology, Imam Abdulrahman Bin Faisal University, P.O. Box 1982, Dammam 31441, Saudi Arabia
3
Saudi Aramco Cybersecurity Chair, Department of Computer Engineering, College of Computer Science and Information Technology, Imam Abdulrahman Bin Faisal University, P.O. Box 1982, Dammam 31441, Saudi Arabia
*
Author to whom correspondence should be addressed.
Sensors 2023, 23(15), 6666; https://doi.org/10.3390/s23156666
Submission received: 2 July 2023 / Revised: 17 July 2023 / Accepted: 19 July 2023 / Published: 25 July 2023
(This article belongs to the Special Issue Industry 5.0: How Intelligent Sensors and Its Applications Accelerate Customized Digital Transformation for Industry)
Browse Figures
Versions Notes

Abstract

:
This systematic literature review explores the digital transformation (DT) and cybersecurity implications for achieving business resilience. DT involves transitioning organizational processes to IT solutions, which can result in significant changes across various aspects of an organization. However, emerging technologies such as artificial intelligence, big data and analytics, blockchain, and cloud computing drive digital transformation worldwide while increasing cybersecurity risks for businesses undergoing this process. This literature survey article highlights the importance of comprehensive knowledge of cybersecurity threats during DT implementation to prevent interruptions due to malicious activities or unauthorized access by attackers aiming at sensitive information alteration, destruction, or extortion from users. Cybersecurity is essential to DT as it protects digital assets from cyber threats. We conducted a systematic literature review using the PRISMA methodology in this research. Our literature review found that DT has increased efficiency and productivity but poses new challenges related to cybersecurity risks, such as data breaches and cyber-attacks. We conclude by discussing future vulnerabilities associated with DT implementation and provide recommendations on how organizations can mitigate these risks through effective cybersecurity measures. The paper recommends a staged cybersecurity readiness framework for business organizations to be prepared to pursue digital transformation.

1. Introduction

Digital transformation refers to adopting digital solutions in the business processes of organizations, which can result in significant changes in their business operations. Such modification can impact various aspects of an organization, for instance, user experience, business processes, target markets, customers, customer relationships, and even diverse cultural implications. The accelerated technology adoption by business organizations during the COVID-19 pandemic also resulted in many abrupt challenges [1]. Emerging technologies such as artificial intelligence, big data and analytics, blockchain, cloud computing, the Internet of Things, and the industrial Internet of Things are critical enablers for digital transformation. Due to extensive benefits, businesses are accelerating the digital transformation drive. Still, cybersecurity has grown into a significant challenge for companies, and to gain business continuity, organizations need to secure their digital transformation tools and artifacts. Therefore, it is crucial for organizations undergoing DT adoption to prioritize cybersecurity measures and ensure that their systems are secure from potential threats [2,3].
Cybercriminals may take advantage of vulnerabilities in digital technologies; therefore, organizations must ensure that technological solutions are secure from digital attacks. Cybersecurity can be achieved by implementing encryption, authentication, and access control measures to protect data and networks from unauthorized access or malicious activities. Additionally, organizations should consider investing in cyber insurance policies that can provide financial protection against losses due to a successful attack on their systems. Another critical issue is to raise awareness among employees regarding cybersecurity attacks, as higher awareness results in dependable information security behavior [4,5]. Cyber-attacks have drastically escalated; therefore, business organizations must understand cybersecurity threats and how best to mitigate them comprehensively. These attacks usually aim to assess, change, or destroy sensitive information; extort monetary benefits from users; or interrupt normal business processes. Cybersecurity involves techniques to protect computers and networks from unauthorized access and malicious activities such as data theft and destruction.
Cybersecurity costs and cybercrimes are exhibiting an increasing trend globally [6]. Haislip et al. [7] highlighted that the economic cost of cybersecurity breaches is underestimated, as it is not only limited to the targeted form; they spill over to the industry concerned through negative returns and higher insurance costs. Garg [8] has highlighted seven critical benefits of investing in cybersecurity to motivate organizations in making cybersecurity investments. These include protecting intellectual property, better meeting customer requirements, minimizing customer turnover, branding secure products, joining secure vendors in an integrated network, company reputation, and minimizing collateral damage in the industry. Lee [9] has presented a risk management framework focusing on continuously improving cybersecurity practices and cost–benefit analysis for cybersecurity investments. Many organizations use the National Institute for Standards and Technology (NIST) Cybersecurity Framework for cybersecurity risk management; however, the standard lacks a cost–benefit analysis. The Gordon–Loeb model has been proposed to identify which tier of NIST is more effective for a particular organization in terms of cost–benefit study [10]. Krutilla et al. [11] enhanced the Gordon–Loeb model by considering the depreciation cost of cybersecurity assets, which can impact the cost–benefit analysis of cybersecurity initiatives. Simon and Omar [12] highlighted that companies may be affected by cybersecurity risks via cybersecurity attacks on their supply chain partners, so they maintain that cybersecurity investments need to consider both coordinated and uncoordinated attacks. Uddin et al. [13] highlighted that cybersecurity weaknesses impact organizational growth and performance, and, especially for the banking sector, operational risks have increased due to cybersecurity threats. Curti et al. [14] highlighted that cybersecurity attacks are on the rise in the governmental sector, and to mitigate these threats, governments are increasing governmental operating costs and overall financing costs.
In this paper, we have conducted a systematic literature review that documents how digital transformation has changed the business sector and the implications of cybersecurity for digital transformation. We have investigated the papers published during 2019–2023 using PRISMA guidelines for conducting a literature review. We have proposed a cybersecurity readiness framework for business organizations pursuing digital transformation. The findings of this paper will help business organizations, practitioners, and researchers to grasp the state of the art in this domain and will form the basis for further research.
This paper is organized as follows: Section 2 outlines the methodology adopted to conduct the survey, and Section 3 discusses the literature in detail. Section 4 provides a discussion, and a conclusion is offered in Section 5.

2. Materials and Methods

In this section, we explain the methodology. We did a systematic literature review using the PRISMA guidelines [15]. As shown in Figure 1, we used the Google Scholar database. Primary studies were extracted using specific keywords in search criteria. Keywords were chosen to facilitate the generation of research articles relevant to our topic. The search terms used were (business transformation) AND (security), (digital transformation) AND (cybersecurity), (digital transformation) AND (cyber security), (digital transformation) AND (protection), and (digitization) AND (security). To refine our search results, we used the following inclusion criteria:
  • The paper should be relevant to digital business and cybersecurity.
  • The paper is published between 2019–2023.
Additionally, the following exclusion criteria were applied to search results:
  • The papers are not written in the English language.
  • The paper is not related to cybersecurity and digital transformation.
  • The paper is a review paper.
All Google Scholar results were checked for compliance with these criteria. The process of identifying the extracted studies went through the quality assessment stage, starting with a quick scan of the title and the language of the paper (English or not). Secondly, it was also ensured that these papers are related to and relevant to our research. Figure 1 shows the number of final papers that were selected after going through these stages.
As highlighted in Figure 1, digital transformation and cybersecurity are widely researched, and our final analysis included forty-two papers. Figure 2 highlights the year-wise publication history.

3. Results

In this section, we highlight the findings of downloaded papers.

3.1. Financial Sector

The financial sector is a critical component of an economy, and there have been many empirical studies in different geographical contexts. For example, Al-Alawi and Al-Bassam conducted empirical research in Bahrain and found that financial institutions are exposed to online identity theft, computer system damage, and hacking attempts resulting in operational disturbances [16]. Similarly, Hasan and Al-Ramadan [17] conducted an empirical study with bank customers in Iraq and found that although banks adopt significant security measures, some customers are still skeptical about online banking. In another study, Joveda et al. [18] investigated the banking sector in Bangladesh. They highlighted developing a cybersecurity system for identifying money laundering transactions that negatively impact economic development. There is a vast potential in modern technologies to support the financial sector. Almudaires and Almaiah [19] outlined major threats to credit card companies and associated solutions for credit card companies to improve their cybersecurity implementation. Smith and Dhillon [20] highlighted that blockchain is a crucial technology to minimize security threats in financial transactions; however, there is a need for rigorous analysis of blockchain implementation in the financial sector. Similarly, Kuzmenko et al. [21] used machine learning models to analyze large volumes of financial data to identify potential threats at an early stage.
Rodrigues et al. [22] developed a decision-support model for incorporating artificial intelligence (AI), digital transformation, and cybersecurity into the banking sector while ensuring data security is not compromised. The authors found that traditional banks are under pressure from their stakeholders to adapt to new technologies, and they also need to ensure that any potential data breaches or other security issues do not compromise their reputation. The authors used cognitive mapping and the decision-making trial and evaluation laboratory method to address this complex issue with an expert panel in group sessions. This resulted in a realistic framework for making decisions regarding AI implementation in the banking industry while ensuring data security is not compromised. The study developed a multi-stakeholder cognition-driven framework using cognitive mapping combined with DEMATEL methodology. This approach allowed them to identify critical factors affecting AI adoption within banks, such as customer trust toward technology-based services offered by banks; regulatory compliance requirements; and availability of a skilled workforce, which were then ranked based on their relative importance using DEMATEL analysis.
Similarly, Fedorov et al. [23] highlighted how cognitive technologies could ensure data security when using biometric identification technology in remote banking transactions. The article discussed how digital transformation and biometric identification would impact financial services in Russia. It emphasized that advanced security measures are necessary for protecting sensitive customer data during these transactions. The proposed solution is through cognitive technologies focused on human intellectual abilities as one direction for ensuring information security within this context.
Another research study by Patil and Bharath [24] investigated technological advancements in the financial sector. The study’s findings showed that Fintech has improved businesses, and investors have more confidence in the technology. They also presented new technologies adopted by Fintech and their associated issues. The effect of financial technology was positive on the factors of trust and business authorization. Traditional finance has noticed the most important critical issues, such as the risks of fraud and low performance, and differences and limitations have been encountered. The research was conducted on a limited sample of approximately 160.
Moreover, Rãƒdulescu et al. [25] explained the risks associated with digitalization regarding economic development and ensuring social and information security. They highlighted that digitalization significantly impacts economic growth, social inclusion, and sustainable development. However, it also introduces new vulnerabilities that can lead to cyber-attacks and require smart controls to prevent them. The authors suggested that technology experts and other stakeholders should be involved in assessing these risks as they can grow and become more complex over time. Risk managers must develop a comprehensive strategy that includes mitigation and risk transfer solutions, prioritizing which IT security options best mitigate the organization’s risk.
Moreover, international cooperation is essential to combat cybercrime due to the evolving global crime and terrorist threats associated with digital transformation. Finally, it highlighted the growing importance of information technology in business development, human relations, and communication between people and governments. Digital risk management should therefore be a priority for all involved stakeholders.

3.2. Health Sector

Cybersecurity in the health sector deals with patient data privacy [26] and the security of medical devices [27,28,29,30]. A secure digital transformation drive can help improve health organizations’ organizational governance [31,32,33]. Garcia-Perez et al. [34] discussed how the digital transformation of healthcare systems must be managed effectively from a cybersecurity perspective. This paper analyzed data from higher management in the UK during the COVID-19 pandemic. According to their findings, a balanced foundation that considers cybersecurity knowledge development, uncertainty management, and the sector’s high systematic and organizational interdependence that has implications for research and management practices is essential for digital resilience and sustainability efforts in the health sector.
On the other hand, Paul et al. [35] discussed the use of digital technology in the healthcare sector and highlighted privacy and security issues related to these technologies. This study examined how digitization is transforming the healthcare sector, its impact on patient care, and opportunities for new business models with Industry 4.0 and business intelligence approaches. The rise in chronic diseases and the current pandemic have increased the need for person-centered care that encourages individuals to be involved in their health care. Digital solutions such as biosensors and software are being introduced to meet the growing need for on-demand healthcare services. Big data analytics have also significantly impacted healthcare organizations by providing access to decades of stored data, which serves as evidence-based medicine for better decision-making when treating patients while ensuring patient privacy remains protected. There are many ways to address security and privacy concerns related to digitalization in healthcare. It covers various solutions such as mutual authentication, key agreement, lightweight cryptography, blockchain-based solutions, etc., which can help ensure the secure handling of medical data. The authors also suggest developing management programs for medical equipment and investigating how patient engagement can impact privacy and security measures. Finally, they recommend further research on regulations regarding privacy and security in the healthcare sector and exploring the role of artificial intelligence (AI) and blockchain technology in improving healthcare outcomes while maintaining data safety. The adoption of cloud-based technology is also discussed as a potential solution for better patient data archiving and usage, lower storage costs, quicker innovation cycles, more straightforward collaboration, and increased telemedicine possibilities.
Nwaiwu and Mbelu [36] highlighted that the General Data Protection Regulation GDPR is essential for businesses and governments to comply with to track and monitor people’s health, develop business models, and discover market opportunities. Statistics show that Europe has recorded 1.92 million confirmed COVID-19 cases and contact tracing with personal data is necessary to limit and contain the spread of the virus.
Maleh and Mellal [37] provided insights into how digital transformation and cybersecurity are impacted by COVID-19 proliferation. The author discussed how COVID-19 has accelerated digital transformation trends such as cloud computing, the IoTs explosion, and big data accumulation while also increasing cyber-attacks related to personal data protection. The three main categories of challenges faced by cybersecurity departments during and after the pandemic are resilience against cyber attackers exploiting crises such as phishing or ransomware; recovery by ensuring secure pre-COVID-19 working methods upon return to the office; and adapting a technology roadmap for new realities while meeting business needs and customer expectations in digital transformation projects.

3.3. Governmental Sector

Digital transformation in governmental organizations is adopted all over the world, such as in Bahrain [38], the UK [39], and Saudi Arabia [40]; however, the adoption speed is not uniform. Al Shobaki et al. [41] investigated how digital transformation affects cybersecurity practices within the Ministry of Interior and National Security in Palestine. The researchers used a descriptive-analytical approach with a questionnaire as their primary research tool. They found a statistically significant correlation between all digital transformation dimensions and the ministry’s cybersecurity practices. Additionally, certain organizational factors were found to have a powerful impact on these practices. For example, effective data exchange among different departments was identified as crucial for maintaining robust cybersecurity measures across all areas of operation. Overall results showed that there is indeed an impact of digital transformation on cybersecurity in this context, specifically in Gaza governorates, where it had an impact coefficient (0.897). Based on these findings, recommendations were made for improving electronic services offered by government agencies while also addressing gaps in worker performance related to technology use or knowledge gaps around best practices when dealing with sensitive information online. In conclusion: this paper provides valuable insights into how businesses can adapt their cybersecurity strategies when undergoing significant changes due to technological advancements such as those associated with “digital transformations”, identifying key organizational factors impacting cybersecurity measures across organizations like ministries.
Another study by Al Najjar et al. [42] aimed to identify the reality of digital transformation in the Palestinian Ministry of Interior and National Security from the point of view of workers in computer and information technology units. The study used a comprehensive survey method, distributing questionnaires among workers, with 61 retrieved (representing an 87.1% response rate). Several dimensions related to digital transformation were measured through these questionnaires, including senior management support, strategic directions, technical infrastructure necessary for digital transformation, human resources coordination, data privacy and security, organizational structure, and job description. The results showed that most dimensions related to digital transformation are available within the ministry to a large extent. However, there is still room for improvement, such as providing more funds for electronic services development or innovation spending. Senior management support received a high approval degree along with strategic directions. At the same time, the technical infrastructure necessary for digital transformation also achieved a large approval degree, followed by human resources coordination, which scored lower than other dimensions but still had significant relative weight. In conclusion, this paper highlights how important it is for organizations seeking competitive advantage through improved efficiency or low-cost electronic service growth opportunities that exploit technological revolution possibilities offered at all levels, internally or externally, with various partner institutions, to consider investing in their efforts toward achieving successful digital transformation initiatives.
In another study, Fjord and Schmidt [43] examined the potential and challenges of using digital tools to simplify tax assessment and collection and enhance transparency. Practical experiences in Denmark showed that states had made progress in making tax processes more efficient but needed to take measures to ensure legality and transparency through cybersecurity.
Mijwil et al. [44] highlighted the importance of cybersecurity governance in digital transformation for public services provided by companies or institutions. The paper argued that changes in cybersecurity must be considered as it constitutes a large part of priorities for nations and companies undergoing digital transformation. The conclusion summarizes the importance of establishing straightforward programs and strategies to develop trustworthy cybersecurity governance without hacking or tampering with data/information while undergoing digital transformation. It also provided recommendations on how businesses can ensure secure operations while improving efficiency and effectiveness when providing public services through electronic means.
Maglaras et al. [45] focused on protecting critical infrastructure vital for public safety and national security. They proposed a methodology to protect critical national infrastructure based on fileless attacks versus Advanced Persistent Threat (APT) group techniques used in such attacks. The study using this methodology aimed to quantify and score cyber-attacks from an offensive cybersecurity perspective.

3.4. Business Sector

Business organizations are very heterogeneous, resulting in the technological systems deployed in the organizations. Modern-day technologies like the Internet of Everything can help organizations improve cybersecurity [46]. Gonchar [47] developed theoretical and practical recommendations for improving economic security in the digital economy. The researchers conducted a study on the impact of digital technologies on entrepreneurial activity in Ukraine, finding that businesses are increasingly using information and communication technologies. Still, there were differences based on size and sector. The paper proposed a methodology for assessing a country’s level of digital transformation within this context, which could help unify the study of conditions related to entrepreneurship and innovation. However, the paper found no significant relationship between the performance levels of the companies studied and their degree of digitization due to low staff involvement in these projects. The conclusion drawn from this research is that while businesses are adopting more technology across all sectors, including banking, as it increases flexibility and sales opportunities while decreasing costs incurred internally, such as time spent retraining employees who may not be familiarized yet or lack sufficient skills necessary at present given the rapid changes happening globally, there needs to be greater employee involvement in these projects if they are going to have an impact on business performance levels. Therefore, activities should focus not only on supporting enterprise resilience against risks associated with cybersecurity threats but also on promoting better employee qualifications required by more complex tasks resulting from business process automation through technology adoption across all sectors, including banking, where it increases flexibility and sales opportunities while decreasing costs incurred internally such as time spent retraining employees.
In another paper, Kuzior et al. [48] described the convergence of digitization processes across countries based on factors such as internet use, infrastructure metrics, and access to ICT. This study used the coefficient of variation to determine sigma convergence. It developed an econometric model that described the impact of national cybersecurity levels, ease of doing business, and anti-money laundering indices on digital development. This study aimed to understand the key determinants shaping risk in using financial instruments for money laundering and terrorist financing concerning global digitalization trends.
Moreover, another paper by Putri et al. [49] presented an example using the change from directory to digitization in Indonesia. Qualitative research approaches were used such as examining and describing events via interactions with others, mental images, and perceptions. These were drawn based on opinion from general public to encourage the use of digitization in public business and services and to follow trends observed from related parties as well as to encourage the government sector to develop services and evaluate the effectiveness of concepts using the six-ware cyber security framework (SWCSF) and Electronic-Based Government System (SPBE) that many government agencies have used.
Furthermore, another study by Shitta-Bey [50] showed the impact of digital transformation through cloud computing on business transformation depending on the requirements factors chosen by organizations to publish or other models that differ from each other. The model and the scope of control were defined between cloud service providers and companion consumers. Therefore, there were security risks and broad threats associated with it, as well as an increase in the amount of confidential data in different cloud environments, and this is a significant concern for companies considering business transformation using a qualitative method to gain a thorough grasp of cloud computing service trends and practices. Among these threats to the cloud environment, whether from the inside or the outside, such as data penetration, loss, or leakage, dangers may also include weaknesses in the infrastructure or secure access, or they may be other destinations that are dead using the application programming interface. Eighteen threats were identified in this study of complete cloud migration. To deal with these security risks and take measures to reduce them and create strategies using appropriate equipment and recording procedures to monitor risks, suitable measures must be adopted during the migration or transition to the cloud. Protocols are included in the strategic plan that define the scope of migration and identify the basic parameters and indicators of performance.
E-commerce is an important application where digital transformation has transformed the business sector. Trung et al. [51] analyzed the applications of digital transformation, AI, IoTs, and blockchain in managing commerce secrets from a SWOT perspective. The authors used qualitative analysis, synthesis, inductive methods, and statistical data to conduct their research. They found that these technologies offer several benefits, such as increased efficiency, transparency, and security for businesses that adopt them. However, there are also challenges associated with their implementation, such as high costs and technical complexity, which need to be addressed by organizations before they can fully realize the potential benefits. In conclusion, the paper highlighted how mathematical solutions could be applied for industrial uses through a SWOT analysis of blockchain technology. It emphasized how businesses should consider adopting these technologies while being aware of their advantages and limitations to make informed decisions about implementing them into their operations effectively while minimizing cybersecurity risks in the industry 4.0 era or beyond.
Gul et al. [52] investigated Saudi E-commerce websites to understand the customers’ security perceptions using trustworthiness, credit card usage concerns, and consumer ratings as primary criteria. The authors found that Saudi E-commerce websites lack customers’ trust in the context of security, and there is a need to enhance the security features of Saudi websites. Similarly, Saeed [5] explored the user behavior of E-commerce customers in Pakistan using protection motivation theory as a theoretical model. The results highlighted that customer feelings, trustworthiness, motivation factors, and credit card concerns impact customer trust during online shopping.

3.5. Industrial Sector

Industry 5.0 advocates for establishing intelligent manufacturing systems, which require the Internet of Things based on technological implementation. There are many technological advancements to secure industrial organizations, such as automated attack detection [53,54], automated control rooms [55,56,57], zero trust architecture [58], and digital twins [59]. Osak and Buzina [60] explored ways to evaluate the flexibility and security of power systems under new conditions brought about by digital transformation and changes in industry practices, such as an increase in renewable energy sources and electric cars. The authors discussed principles for automatic control of power systems during digital transformation while considering differences between various electrical installations.
In another study, Mayhuasca and Sotelo [61] summarized how quantum technologies could revolutionize various industries by improving data processing capabilities and enhancing security against cyber threats. However, the authors acknowledged that further research is needed before these technologies can become widely adopted due to their complexity and the high cost currently associated with them. Overall, the authors suggested that continued exploration into quantum technology will likely lead to innovations that could transform our society even further than what we have seen with traditional computing systems.
In another study, Raza et al. [62] explored how organizations balance preventing security issues with responding to them in digital transformation projects. This research likely presents original insights into how organizations approach managing IS security compliance during digital transformation initiatives. This paper focused on Robotic Process Automation (RPA) in digital transformation and its impact on Information Security Compliance. Similarly, Trung et al. [63] explored how IoTs, machine learning (ML), AI, and digital transformation impact service industries such as education, medicine-hospitals, tourism, and manufacturing sectors. The authors found that in the education sector, ML and IoTs have affected teaching methods by evaluating students’ performance, which can help teachers choose suitable career development paths for learners. In the health sector, public health data processing is faster with big data due to ML technology being applied. Based on their empirical research findings, the authors proposed implications for future studies on applications of machine learning in each specific sector. They also highlighted cybersecurity risks associated with implementing these technologies that need management solutions. This study showed how emerging technologies like IoTs, machine learning (ML), and AI transform industries. Still, at the same time, it highlighted potential security risks associated with them, which need attention from researchers and practitioners who implement these systems into their organizations or businesses.

3.6. Diverse Organizational Contexts

In a study, Di et al. [64] proposed a networked organizational structure for enterprise information security management based on genetic algorithms and analyzed its benefits compared to traditional approaches. The authors identified the challenges enterprises face in managing their information security during digital transformation efforts, such as risks from cyber-attacks and data breaches. They proposed a new genetic algorithm approach to improve work efficiency, reduce costs, and maintain strong information security. Their experiments comparing traditional network organization structures with those based on genetic algorithms found that the latter was much more efficient in terms of work efficiency. Additionally, they provided data showing advantages such as cost savings and room for growth when implementing this approach within enterprises. Overall, the results suggested that using a networked organizational structure for enterprise information security management based on digital transformation and genetic algorithms can effectively maintain strong information security while improving work efficiency within businesses undergoing technological change.
Alenezi [65] examined the role of software engineering in digital transformation and its importance for secure development practices. The authors argued that software engineering has become essential in ensuring efficient functioning as organizations increasingly adopt digital solutions to improve their operations. They also highlighted that security concerns are critical during this process due to increased cyber threats. Analyzing trends in software engineering and examining case studies from various industries, such as healthcare and finance, they conclude that all digital systems rely on software for efficient performance while emphasizing how secure development practices can mitigate risks associated with adopting new technologies.
Moreover, in another paper, Marelli [66] discussed how digitization and new technologies are becoming increasingly crucial in humanitarian operations, making organizations vulnerable to cyber-attacks that can impact their ability to protect and assist those affected by armed conflict and violence.
In another study, Dvojmoč and Verboten [67] emphasized that employers have certain obligations to ensure employee information security, such as using appropriate hardware and software, configuring firewalls, and implementing antivirus programs. Furthermore, they highlighted the need for companies to comply with international instruments such as the GDPR when dealing with personal data protection issues related to new technologies being implemented.
On the other hand, in the environmental sector, Mukhlynina et al. [68] examined the problem of introducing digital technologies into the system of environmental safety and protection in Russia. The authors focused on the role and specific steps currently being taken by state authorities at the federal level. They also highlighted legal problems that exist in this context. The detailed findings suggested several challenges associated with implementing digital transformation efforts related to environmental safety in Russia. These included a lack of clear regulatory frameworks, insufficient funding for research and development activities, inadequate infrastructure support, and limited public awareness about these issues. In terms of results, based on their analysis using the factor analysis method, they identified vital factors affecting digitization efforts, such as technological readiness, availability of a skilled workforce, government policies and regulations, etc., which can be used by policymakers while designing strategies toward achieving sustainable environmental goals through digitization. Furthermore, Halabi et al. advocated for green cybersecurity practices to save energy consumption [69].
Voskresenskaya [70] investigated the current state of digital transformation in governance, economy, and social sectors as a factor for development and security. The researchers found that digitalization has become an integral part of modern society. They identified vital attributes such as the mechanism for transforming economic cooperation into information/telecommunication space, active introduction/application of e-money/smart contracts into civil transactions, and development of e-governance. They also noted that problems within these areas could affect compatibility with other economies due to lagging data processing capabilities or the inability to use digital resources effectively. Based on their analysis using both qualitative (laws/regulations) and quantitative (statistical/comparative) methods at national/international levels, they concluded that there are significant benefits associated with embracing digitization across various sectors, including increased efficiency/productivity in service delivery processes, which ultimately leads toward sustainable growth/security.
In conclusion, it was recommended that governments prioritize investment in infrastructure necessary for the effective implementation/adoption of new technologies while ensuring that adequate regulation/policy frameworks exist to support innovation without compromising citizens’ privacy/data protection rights. Additionally, given the rapid pace of change, businesses must adapt quickly to remain competitive. In another study, Kuchumov et al. [71] suggested that while there are potential benefits from digitization initiatives, such as increased efficiency and productivity gains, significant risks are involved, such as cybersecurity threats or job displacement due to automation. Furthermore, the impact of these initiatives varies depending on regional policies toward digitization. In conclusion, this paper highlighted that it is essential that policymakers in Russia’s regions consider potential benefits and carefully evaluate possible negative impacts when implementing digital transformation strategies. By doing so, they can develop adequate public policies based on systemic analyses that take into account both positive effects along with serious risk factors affecting further development within each region individually rather than applying one-size-fits-all solutions across all areas indiscriminately without considering local conditions or needs specificities, which could lead to unintended consequences if not adequately addressed beforehand through careful planning processes involving stakeholders at different levels (local communities/businesses/government agencies).
Alahmadi et al. [72] highlighted that digital agriculture has helped automate labor-intensive jobs. However, many threats and vulnerabilities are associated with digital agriculture. They highlighted the potential side-channel attacks relevant to digital transformation. Similarly, Song et al. [73] highlighted that the Internet of Things and 5G networks have resulted in massive growth of digital agriculture. However, publishing a large volume of data is prone to security concerns. As a result, the authors have proposed a privacy-preserving data aggregation scheme that is more secure and flexible.
Gonçalves [74] highlighted that digital transformation in the accounting sector of small- and medium-scale enterprises is in its early stages; however, the benefits are widely recognized. Data protection and cybersecurity threats are vital challenges that need to be handled by accounting professionals. In another study, Tiron-Tudor et al. [75] highlighted that artificial intelligence, blockchain, and GPS technologies can help companies’ accounting departments implement real-time auditing systems. However, companies must allocate substantial resources to mitigate cybersecurity risks associated with advanced technologies.
Rodríguez-Abitia and Bribiesca-Correa [76] highlighted the fact that technological advancements, such as artificial intelligence, the Internet of Things, blockchain, 3D printing, and secure technical infrastructure, will also change universities. Everyone may adopt a new role, such as content producer, influencer, etc., to contribute to the education sector. Similarly, Pavlova [77] highlighted that the culture is typically based on free and open knowledge sharing in an educational setting. However, security threats demand a balance between openness and security mechanisms. Table 1 provides a summary of all the literature discussed.
Power systems are complex infrastructures in modern society and are vulnerable to cybersecurity threats [78,79]. Dagoumas [80] has used IEEE RTS 96 power system, and the author highlighted that a combination of operating conditions and cyber-attacks should be used to evaluate system stability. Diaba et al. [81] highlighted that power system communication protocols are prone to cyber-attacks by hackers. The authors have proposed an algorithm outperforming conventional deep learning approaches using SVM, ANN, and CNN. Similarly, Presekal et al. [82] developed a hybrid machine learning model using Graph Convolutional Long Short-Term Memory (GC-LSTM) and a deep convolutional network for anomaly detection in electrical power grids.
Kechagias et al. [83] highlighted that cybersecurity in the maritime industry has become very important. The authors have presented a detailed case of how a maritime company adopted a systematic approach to review its cybersecurity strategic policies, found loopholes, and subsequently performed risk mitigation.
Table
Table 1. Key findings of literature.
Table 1. Key findings of literature.
PaperPublication YearApplication DomainKey Technologies/TheoriesKey Findings
[22]2022Financial sectorArtificial intelligence, cognitive mapping, DEMATEL techniquesProvision of a decision-support model by combining the decision-making trial and evaluation laboratory (DEMATEL) method and cognitive mapping.
[23]2023Financial sectorCognitive technologiesProvided directions to use cognitive technologies in the digital transformation of the Russian economy.
[24]2022Financial sectorArtificial intelligence, blockchain, voice-based technology, or natural language processingHigher trust in Fintech by stakeholders in the financial sector.
[25]2019Public institutions, financial institutions, banking institutions, industry, transportation, and agricultureDifferent technologies related to digitalizationHighlighting the need for information security in different application domains.
[34]2023Healthcare sectorNo specific technology was mentionedSustainability of digital transformation in the healthcare sector requires cybersecurity skills, uncertainty management, and the healthcare sector’s interdependence.
[35]2023Healthcare sectorElectronic health records, remote patient monitoring, artificial intelligence, telemedicine, and federated learningPrivacy and security recommendations for the healthcare sector.
[36]2020Healthcare sectorSmartphone apps and wearable tech products enable data sharingNeed for data privacy of patients in healthcare applications.
[37]2021Healthcare sectorNo specific technology was mentionedNeed for enhanced cybersecurity in post-COVID-19 digital transformation.
[41]2022Government sectorNo specific technology was mentionedRecommendation to use a secure network by the ministry in Palestine.
[42]2022Government sectorNo specific technology was mentionedEstablishment of clear data exchange policies and clear job descriptions for IT employees.
[43]2023Government tax paymentsFull-service mobile apps and e-payment channelNeed for actions to make the process transparent and legal in Danish tax payment.
[44]2023Governmental and other public servicesAI and other leading technologiesEmphasizes cybersecurity governance.
[45]2021Government critical infrastructureNo specific technology was mentionedEmphasizes cybersecurity of critical infrastructure.
[47]2022Business sectorNo specific technology was mentioned.Emphasizes state regulations for the transformation of economic clusters at the international level.
[48]2022Business sectorAdvanced encryption and data analytics are essential for cybersecurity and AML efficiencyAnalyzed digital transformation and cybersecurity situations across different countries.
[49]2022Business sectorBusiness sector advanced encryption and data analytics are essential for cybersecurity and AML efficiencyDigital transformation in Indonesia and six-ware cyber security framework.
[50]2023Business sectorIT security and data protection, cloud migration, cloud computingSecurity concerns for cloud transformation of business.
[51]2021Business sectorBlockchain, IoTs, AI, and other emerging technologiesSWOT analysis of blockchain and other technologies.
[52]2022E-commerceTrustworthiness, credit card usage concerns, consumer ratingUser information security perception in Saudi Arabian E-commerce applications.
[5]2023E-commerceProtection Motivation TheoryUser information security perception of E-commerce in Pakistan.
[60]2023Industrial sectorNo specific technology was mentionedSecurity implication of small power plants.
[61]2022Industrial sectorQuantum computing, cryptography, optical fiber, and related technologies are discussedInformation security implications in quantum technologies.
[62]2019Industrial sectorRobotic Process Automation (RPA)Information system security compliance and response implications.
[63]2019Service industryIoTs, machine learning, AI, and digital transformationCybersecurity implications of IoTs, machine learning, and digital transformation.
[64]2022Networked organizational structureGenetic algorithmsFactors affecting quality in manufacturing settings.
[65]2021Work environmentCloud computingEmphasizes the importance of secure software development in digital transformation.
[66]2020EnterprisesMobile devices, cloud computing, social media platformsCybersecurity implications for the digital transformation of humanitarian organizations.
[67]2022Work environmentFirewalls, encryption software, intrusion detection systemsEmphasizes data security of employee data in organizations.
[68]2022EnvironmentNo specific technology focused onDigital transformation and environmental security in Russia.
[69]2022EnvironmentIoTsGreen IoTs and adaptive cybersecurity implications.
[70]2019Governance, economy, and social sectorsNo specific technology was mentionedDigital transformation and security in Russia.
[71]2020EconomyNo specific technology was mentionedEconomic security and digital transformation in Russia.
[72]2022Digital agricultureSmart sensors, Internet of Things, machine learningSide-channel attacks in digital agriculture.
[73]2020Digital agricultureInternet of Things, 5G networksPrivacy-preserving data aggregation scheme.
[74]2022Digital accountingRobotics, enterprise resource planning, artificial intelligence, optical character recognitionDigital transformation and future of accounting.
[75]2022Digital accountingAI, blockchain, cloud computingEmphasis on benefits for accounting firms in digital transformation.
[76]2021EducationArtificial intelligence, Internet of Things, blockchain, 3D printing, cybersecurity, big dataFuturistic universities in the era of digital transformation.
[77]2022EducationNo specific technology focused onEmphasis on cybersecurity culture in universities.
[80]2019Power systemsIEEE RTS 96Emphasizes the impact of cybersecurity attacks on power systems.
[81]2023Power systemsArtificial neural networks, convolutional neural networks, and support vector machinesMeta-heuristic and deep learning algorithms for cybersecurity in power systems.
[82]2023Power systemsGraph Convolutional Long Short-Term Memory (GC-LSTM) and a deep convolutional network Model for situational awareness in online cyber-attack.
[83]2022MaritimeNo specific technology focused onCybersecurity implications for maritime industry.

4. Discussion

Table 1 highlights that advanced technologies such as the IoTs [51,53], blockchain [63,74], and 5G [84,85] networks can facilitate organizations in securing business processes and making them efficient [1,2]. Furthermore, machine learning approaches [63,72,86] can help identify malicious traffic in the network, which can help in identifying cyber threats proactively. However, such technological interventions should be well thought out and appropriately designed [9]. While new technologies can increase efficiency and competitiveness of businesses, they also bring unknown risks, such as cyber-attacks [3]. This leaves them vulnerable to cyber threats, which could have significant economic consequences. Therefore, raising awareness about these risks among industry professionals is essential. Additionally, there should be reasonable security measures to secure technological infrastructures from cyber-attacks [87]. A fundamental security strategy could help organizations from recurring cyber-attacks [88]. Therefore, it is important to analyze cybersecurity risks during the transition to the digital economy [89]. Governments have an extensive role in developing and implementing national-level policy. For instance, establishing a national cybersecurity strategy has helped Greece pursue digital transformation [90]. It should also be considered that while aiming for digital transformation, human factors should also be considered. Human performance degradation is a critical factor in cybersecurity attacks [91]. As shown in the taxonomy of the literature in Figure 3, every sector of the economy is benefiting from the advances in digital transformation and trying to minimize cybersecurity risks.
In the literature, some review articles have focused on digital transformation, such as an article by Metawa et al. [92], which investigated the role of information in digital transformation in the context of Egyptian small- and medium-scale enterprises. Similarly, Özsungur [93] researched business strategy for cybersecurity in digital transformation, and Nguyen Duc [94] documented security risk from an engineering perspective. Furthermore, Hai et al. [1] highlighted the opportunities and challenges for emerging countries regarding digital transformation, and Kour’s work [95] focused on cybersecurity implications in the railway domain. Despite these surveys within the literature, no survey has presented a domain taxonomy and looked into cybersecurity implications in diverse industries, as has been explored in this paper. Based on our review, we propose a cybersecurity readiness framework for business organizations pursuing digital transformation. As shown in Figure 4, this framework has four levels.
At the ad hoc level, organizations do not have planning, preparation, deployment, and surveillance mechanisms to respond to cybersecurity threats. Cybersecurity resilience is dependent on the personal initiatives of employees. Emerging technologies such as artificial intelligence, big data and analytics, blockchain, cloud computing, and services drive digital transformation worldwide while increasing cybersecurity risks for businesses undergoing this process. Therefore, it is crucial to analyze cybersecurity measures during implementation in pursuit of digital transformation, but the organizations at this level do not focus on these aspects.
At the basic level of our framework, organizations have essential cybersecurity planning, preparation, deployment, and surveillance activities in place but no organizational strategic policy regarding cybersecurity. The processes are not mature, and isolated efforts are carried out; no data about the effectiveness of employed cybersecurity approaches are available.
At the planned level of our framework, organizations need a well-planned organizational cybersecurity strategy documenting the processes for cybersecurity preparation, deployment, and surveillance. During the surveillance phase, potential vulnerabilities must be regularly assessed through penetration testing or vulnerability scanning. In addition, it is essential for organizations undergoing DT to consider the human factor in cybersecurity. This means providing regular training and awareness programs for employees to identify and respond appropriately to potential cyber threats. Furthermore, as technology advances rapidly, new security risks not yet fully understood or addressed by current security measures will likely emerge. It will be crucial for businesses undergoing DT involving IoTs devices or other emerging technologies like 5G networks or quantum computing to prioritize comprehensive risk assessments before implementing such solutions.
Organizations aiming for an optimized level need to continuously measure the effectiveness of their cybersecurity planning, preparation, deployment, and surveillance mechanisms. As technology evolves rapidly and new cyber threats constantly emerge, vulnerabilities may arise even with robust security measures. Therefore, it is essential for organizations undergoing DT to perform futuristic technological forecasting and associated cybersecurity planning to continuously innovate their processes. A proactive approach toward optimized security processes can help mitigate future risks associated with digital transformation efforts.

5. Conclusions

This systematic literature review has shed light on the critical role of cybersecurity in digital transformation (DT). Digital transformation has transformed the business sector by transitioning organizational processes to IT solutions, resulting in significant changes across various aspects of an organization. It impacts multiple elements, such as user experience, operations, markets, customers, relationships, and cultural differences. Emerging technologies, including artificial intelligence (AI), big data and analytics, blockchain technology, cloud computing, and services, drive digital transformation worldwide while increasing cybersecurity risks for businesses undergoing this process. And the implications of cybersecurity for digital transformation are significant. As enterprises undergo the process of digital transformation, they become more vulnerable to cyber-attacks and security breaches. Cybersecurity is an essential component of digital transformation as it helps prevent interruptions due to malicious activities or unauthorized access by attackers aiming at sensitive information alteration, destruction, or extortion from users. The COVID-19 pandemic has further highlighted the importance of cybersecurity in DT implementation, as cybercriminals have taken advantage of vulnerabilities created by this rapid shift toward digitalization. Therefore, organizations undergoing DT adoption must prioritize cybersecurity measures to ensure a successful transition without any disruptions caused by security breaches. The study highlights that DT is a complex and ongoing process that requires organizations to be aware of emerging technologies and their associated security risks. As businesses transition their primary operations to IT solutions, they must ensure appropriate measures are in place to protect data and networks from unauthorized access or malicious activities. The findings suggest that implementing encryption or cyber insurance policies can help mitigate these risks during DT implementation. For future studies, we recommend the importance of organizations having comprehensive knowledge of cybersecurity threats throughout the entire process. This includes identifying potential vulnerabilities early on and proactively addressing them.

Author Contributions

Conceptualization, S.S.; methodology, S.A.A., N.A.A. and E.A.; data curation, S.A.A., N.A.A. and E.A.; writing—original draft preparation, S.S., S.A.A., N.A.A. and E.A.; writing—review and editing, D.A.A.; supervision, S.S.; funding acquisition, D.A.A. All authors have read and agreed to the published version of the manuscript.

Funding

The APC was funded by SAUDI ARAMCO Cybersecurity Chair, Imam Abdulrahman Bin Faisal University.

Institutional Review Board Statement

Not applicable.

Informed Consent Statement

Not applicable.

Data Availability Statement

Not applicable.

Acknowledgments

The authors would like to thank SAUDI ARAMCO Cybersecurity Chair, Imam Abdulrahman Bin Faisal University, for funding this project.

Conflicts of Interest

The authors declare no conflict of interest.

References

  1. Hai, T.N.; Van, Q.N.; Thi Tuyet, M.N. Digital transformation: Opportunities and challenges for leaders in the emerging countries in response to COVID-19 pandemic. Emerg. Sci. J. 2021, 5, 21–36. [Google Scholar] [CrossRef]
  2. Möller, D. Cybersecurity in Digital Transformation: Scope and Applications; Springer: Berlin/Heidelberg, Germany, 2020. [Google Scholar]
  3. Matt, C.; Hess, T.; Benlian, A. Digital transformation strategies. Bus. Inf. Syst. Eng. 2015, 57, 339–343. [Google Scholar] [CrossRef]
  4. Saeed, S. Digital Workplaces and Information Security Behavior of Business Employees: An Empirical Study of Saudi Arabia. Sustainability 2023, 15, 6019. [Google Scholar] [CrossRef]
  5. Saeed, S. A Customer-Centric View of E-Commerce Security and Privacy. Appl. Sci. 2023, 13, 1020. [Google Scholar] [CrossRef]
  6. Sharif, M.H.U.; Mohammed, M.A. A literature review of financial losses statistics for cyber security and future trend. World J. Adv. Res. Rev. 2022, 15, 138–156. [Google Scholar] [CrossRef]
  7. Haislip, J.; Kolev, K.; Pinsker, R.; Steffen, T. The economic cost of cybersecurity breaches: A broad-based analysis. In Proceedings of the Workshop on the Economics of Information Security (WEIS), Boston, MA, USA, 3–4 June 2019; Volume 1, p. 37. [Google Scholar]
  8. Garg, V. Covenants without the Sword: Market Incentives for Cybersecurity Investment. In Proceedings of the TPRC49: The 49th Research Conference on Communication, Information and Internet Policy, Virtual, 22–24 September 2021. [Google Scholar]
  9. Lee, I. Cybersecurity: Risk management framework and investment cost analysis. Bus. Horiz. 2021, 64, 659–671. [Google Scholar] [CrossRef]
  10. Gordon, L.A.; Loeb, M.P.; Zhou, L. Integrating cost–benefit analysis into the NIST Cybersecurity Framework via the Gordon–Loeb Model. J. Cybersecur. 2020, 6, tyaa005. [Google Scholar] [CrossRef]
  11. Krutilla, K.; Alexeev, A.; Jardine, E.; Good, D. The benefits and costs of cybersecurity risk reduction: A dynamic extension of the Gordon and Loeb model. Risk Anal. 2021, 41, 1795–1808. [Google Scholar] [CrossRef]
  12. Simon, J.; Omar, A. Cybersecurity investments in the supply chain: Coordination and a strategic attacker. Eur. J. Oper. Res. 2020, 282, 161–171. [Google Scholar] [CrossRef]
  13. Uddin, M.H.; Ali, M.H.; Hassan, M.K. Cybersecurity hazards and financial system vulnerability: A synthesis of literature. Risk Manag. 2020, 22, 239–309. [Google Scholar] [CrossRef]
  14. Curti, F.; Ivanov, I.; Macchiavelli, M.; Zimmermann, T. City Hall Has Been Hacked! The Financial Costs of Lax Cybersecurity. The Financial Costs of Lax Cybersecurity. Available online: https://ssrn.com/abstract=4465071 (accessed on 15 June 2023).
  15. Page, M.J.; McKenzie, J.E.; Bossuyt, P.M.; Boutron, I.; Hoffmann, T.C.; Mulrow, C.D.; Shamseer, L.; Tetzlaff, J.M.; Akl, E.A.; Brennan, S.E.; et al. The PRISMA 2020 statement: An updated guideline for reporting systematic reviews. BMJ 2021, 372, n71. [Google Scholar] [CrossRef] [PubMed]
  16. Al-Alawi, A.I.; Al-Bassam MS, A. The significance of cybersecurity system in helping managing risk in banking and financial sector. J. Xidian Univ. 2020, 14, 1523–1536. [Google Scholar]
  17. Hasan, M.F.; Al-Ramadan, N.S. Cyber-attacks and Cyber Security Readiness: Iraqi Private Banks Case. Soc. Sci. Humanit. J. 2021, 5, 2312–2323. [Google Scholar]
  18. Joveda, N.; Khan, M.T.; Pathak, A.; Chattogram, B. Cyber laundering: A threat to banking industries in Bangladesh: In quest of effective legal framework and cyber security of financial information. Int. J. Econ. Financ. 2019, 11, 54–65. [Google Scholar] [CrossRef] [Green Version]
  19. Almudaires, F.; Almaiah, M. Data an overview of cybersecurity threats on credit card companies and credit card risk mitigation. In Proceedings of the 2021 International Conference on Information Technology (ICIT), Amman, Jordan, 14–15 July 2021; pp. 732–738. [Google Scholar]
  20. Smith, K.J.; Dhillon, G. Assessing blockchain potential for improving the cybersecurity of financial transactions. Manag. Financ. 2020, 46, 833–848. [Google Scholar] [CrossRef]
  21. Kuzmenko, O.; Kubálek, J.; Bozhenko, V.; Kushneryov, O.; Vida, I. An approach to managing innovation to protect financial sector against cybercrime. Pol. J. Manag. Stud. 2021, 24, 276–291. [Google Scholar] [CrossRef]
  22. Rodrigues, A.R.D.; Ferreira, F.A.; Teixeira, F.J.; Zopounidis, C. Artificial intelligence, digital transformation and cybersecurity in the banking sector: A multi-stakeholder cognition-driven framework. Res. Int. Bus. Financ. 2022, 60, 101616. [Google Scholar] [CrossRef]
  23. Fedorov, B.M.; Fedorova, S.V.; Zhang, H.; Mamedova, N.A. Using Cognitive Technologies to Ensure the Information Security of Banks in the Conditions of Digital Transformation and Development of Biometrical Identification. WSEAS Trans. Bus. Econ. 2023, 20, 382–387. [Google Scholar] [CrossRef]
  24. Patil, R.; Bharathi, S.V. A Study on the Business Transformation, Security issues and Investors Trust in Fintech Innovation. Cardiometry 2022, 24, 918–932. [Google Scholar]
  25. Rãƒdulescu, C.V.; Bodislav, D.A.; Negescu, M.D.O. The Risks of Digitization in the Context of Economic Development and of Ensuring Social and Informational Security. In Proceedings of the International Management Conference, Poznan, Poland, 27–29 June 2019; Faculty of Management, Academy of Economic Studies: Bucharest, Romania, 2019; Volume 13, pp. 1040–1050. [Google Scholar]
  26. Mijwil, M.; Aljanabi, M.; Ali, A.H. Chatgpt: Exploring the role of cybersecurity in the protection of medical information. Mesopotamian J. Cybersecur. 2023, 2023, 18–21. [Google Scholar] [CrossRef]
  27. Sethuraman, S.C.; Vijayakumar, V.; Walczak, S. Cyber attacks on healthcare devices using unmanned aerial vehicles. J. Med. Syst. 2020, 44, 29. [Google Scholar] [CrossRef]
  28. Buzdugan, A. Integration of cyber security in healthcare equipment. In Proceedings of the 4th International Conference on Nanotechnologies and Biomedical Engineering: Proceedings of ICNBME-2019, Chisinau, Moldova, 18–21 September 2019; Springer International Publishing: Berlin/Heidelberg, Germany, 2020; pp. 681–684. [Google Scholar]
  29. Thomasian, N.M.; Adashi, E.Y. Cybersecurity in the Internet of medical things. Health Policy Technol. 2021, 10, 100549. [Google Scholar] [CrossRef]
  30. Abie, H. Cognitive cybersecurity for CPS-IoT enabled healthcare ecosystems. In Proceedings of the 2019 13th International Symposium on Medical Information and Communication Technology (ISMICT), Oslo, Norway, 8–10 May 2019; pp. 1–6. [Google Scholar]
  31. Loi, M.; Christen, M.; Kleine, N.; Weber, K. Cybersecurity in health–disentangling value tensions. J. Inf. Commun. Ethics Soc. 2019, 17, 229–245. [Google Scholar] [CrossRef] [Green Version]
  32. Ali, K.A.; Alyounis, S. Cybersecurity in healthcare industry. In Proceedings of the 2021 International Conference on Information Technology (ICIT), Amman, Jordan, 14–15 July 2021; pp. 695–701. [Google Scholar]
  33. Abbas HS, M.; Qaisar, Z.H.; Ali, G.; Alturise, F.; Alkhalifah, T. Impact of cybersecurity measures on improving institutional governance and digitalization for sustainable healthcare. PLoS ONE 2022, 17, e0274550. [Google Scholar] [CrossRef] [PubMed]
  34. Garcia-Perez, A.; Cegarra-Navarro, J.G.; Sallos, M.P.; Martinez-Caro, E.; Chinnaswamy, A. Resilience in healthcare systems: Cyber security and digital transformation. Technovation 2023, 121, 102583. [Google Scholar] [CrossRef]
  35. Paul, M.; Maglaras, L.; Ferrag, M.A.; AlMomani, I. Digitization of Healthcare Sector: A Study on Privacy and Security Concerns. ICT Express 2023, in press. [Google Scholar] [CrossRef]
  36. Nwaiwu, F.; Mbelu, S. Digital Transformation in Healthcare and Surveillance Capitalism: Comparative Assessment of Data and Privacy Protection Compliance across the European Union (5 July 2020). Available online: https://ssrn.com/abstract=3643838 (accessed on 15 June 2023).
  37. Maleh, Y.; Mellal, B. Digital transformation and cybersecurity in the context of COVID-19 proliferation. IEEE Technol. Policy Ethics 2021, 6, 1–4. [Google Scholar] [CrossRef]
  38. Shaheen, K.; Zolait, A.H. The impacts of the cyber-trust program on the cybersecurity maturity of government entities in the Kingdom of Bahrain. Inf. Comput. Secur. 2023. ahead-of-print. [Google Scholar] [CrossRef]
  39. Montasari, R. Cyber Threats and the Security Risks They Pose to National Security: An Assessment of Cybersecurity Policy in the United Kingdom. In Countering Cyberterrorism: The Confluence of Artificial Intelligence, Cyber Forensics and Digital Policing in US and UK National Cybersecurity; Springer Nature: Berlin/Heidelberg, Germany, 2023; pp. 7–25. [Google Scholar]
  40. Alhalafi, N.; Veeraraghavan, P. Exploring the Challenges and Issues in Adopting Cybersecurity in Saudi Smart Cities: Conceptualization of the Cybersecurity-Based UTAUT Model. Smart Cities 2023, 6, 1523–1544. [Google Scholar] [CrossRef]
  41. Al Shobaki, M.J.; El Talla, S.A.; Al Najjar, M.T. Digital Transformation and Its Impact on the Application of Cyber Security in the Ministry of Interior and National Security in Palestine. 2022. Available online: http://www.moi.gov.ps (accessed on 15 June 2023).
  42. Al Najjar, M.T.; Al Shobaki, M.J.; El Talla, S.A. The Reality of Digital Transformation in the Palestinian Ministry of Interior and National Security. 2022. Available online: www.ijeais.org/ijamsr (accessed on 15 June 2023).
  43. Fjord, L.B.; Schmidt, P.K. The Digital Transformation of Tax Systems: Progress, Pitfalls and Protection in a Danish Context. 2022. Available online: https://ssrn.com/abstract=4252832 (accessed on 15 June 2023).
  44. Mijwil, M.; Filali, Y.; Aljanabi, M.; Bounabi, M.; Al-Shahwani, H. The Purpose of Cybersecurity Governance in the Digital Transformation of Public Services and Protecting the Digital Environment. Mesopotamian J. Cybersecur. 2023, 2023, 1–6. [Google Scholar]
  45. Maglaras, L.; Kantzavelou, I.; Ferrag, M.A. Digital Transformation and Cybersecurity of Critical Infrastructures. Appl. Sci. 2021, 11, 8357. [Google Scholar] [CrossRef]
  46. Bokhari, S.; Hamrioui, S.; Aider, M. Cybersecurity strategy under uncertainties for an IoE environment. J. Netw. Comput. Appl. 2022, 205, 103426. [Google Scholar] [CrossRef]
  47. Gonchar, V. The Transformation of Entrepreneurial Activity in the Conditions of the Development of the Digital Economy and a Methodology of Assessing Its Digital Security in Digital Technologies in the Contemporary Economy: Collective Monograph; Simanavičienė, Ž., Ed.; Mykolas Romeris University Research: Vilnius, Lithuania, 2022; ISBN 9786094880506. [Google Scholar]
  48. Kuzior, A.; Vasylieva, T.; Kuzmenko, O.; Koibichuk, V.; Brożek, P. Global Digital Convergence: Impact of Cybersecurity, Business Transparency, Economic Transformation, and AML Efficiency. J. Open Innov. Technol. Mark. Complex. 2022, 8, 195. [Google Scholar] [CrossRef]
  49. Putri MS, D.; Gultom, R.A.; Wadjdi, A.F. The Concept of an Electronic-Based Government System and the Six-Ware Cyber Security Framework in Supporting the Digitization of the Indonesian Government. Def. Secur. Stud. 2023, 4, 1–7. [Google Scholar]
  50. Shitta-Bey, A.M. Security Concerns of Cloud Migration and Its Implications on Cloud-Enabled Business Transformation Effect of Quality Education on Poverty Alleviation View Project. Master’s Thesis, Università della Svizzera Italiana, Lugano, Switzerland, 2023. Available online: https://www.researchgate.net/publication/369118961 (accessed on 15 June 2023).
  51. Trung, N.D.; Huy DT, N.; Van Thanh, T.; Thanh NT, P.; Dung, N.T.; Thanh Huong, L.T. Digital transformation, AI applications and IoTs in Blockchain managing commerce secrets: And cybersecurity risk solutions in the era of industry 4.0 and further. Webology 2021, 18, 10–14704. [Google Scholar] [CrossRef]
  52. Gull, H.; Saeed, S.; Iqbal, S.Z.; Bamarouf, Y.A.; Alqahtani, M.A.; Alabbad, D.A.; Alamer, A. An empirical study of mobile commerce and customers security perception in Saudi Arabia. Electronics 2022, 11, 293. [Google Scholar] [CrossRef]
  53. Anthi, E.; Williams, L.; Rhode, M.; Burnap, P.; Wedgbury, A. Adversarial attacks on machine learning cybersecurity defences in industrial control systems. J. Inf. Secur. Appl. 2021, 58, 102717. [Google Scholar] [CrossRef]
  54. Meeran, Y.A.; Shyry, S.P. Resilient Detection of Cyber Attacks in Industrial Devices. In Proceedings of the 2023 7th International Conference on Trends in Electronics and Informatics (ICOEI), Tirunelveli, India, 11–13 April 2023; pp. 564–569. [Google Scholar]
  55. Ameri, K.; Hempel, M.; Sharif, H.; Lopez Jr, J.; Perumalla, K. Design of a novel information system for semi-automated management of cybersecurity in industrial control systems. ACM Trans. Manag. Inf. Syst. 2023, 14, 1–35. [Google Scholar] [CrossRef]
  56. Buja, A.; Apostolova, M.; Luma, A. Enhancing Cyber Security in Industrial Internet of Things Systems: An Experimental Assessment. In Proceedings of the 2023 12th Mediterranean Conference on Embedded Computing (MECO), Budva, Montenegro, 14 June 2023; pp. 1–5. [Google Scholar]
  57. Ramirez, R.; Chang, C.K.; Liang, S.H. PLC Cybersecurity Test Platform Establishment and Cyberattack Practice. Electronics 2023, 12, 1195. [Google Scholar] [CrossRef]
  58. Zanasi, C.; Russo, S.; Colajanni, M. Flexible Zero Trust Architecture for the Cybersecurity of Industrial Iot Infrastructures. Available online: https://ssrn.com/abstract=4481853 (accessed on 15 June 2023).
  59. Jacopo, P.; Graziana, C.; Federica, P.; Giarrè, L. Using Digital Twin to Detect Cyber-Attacks in Industrial Control Systems. In Proceedings of the IEEE Proceedings of 2023 EUROCON, Torino, Italy, 6–8 July 2023. [Google Scholar]
  60. Osak, A.; Buzina, E. Flexibility and security of power systems, methods of analysis, and criteria for their evaluation in the conditions of digital transformation of the power industry. AIP Conf. Proc. 2023, 2552, 040008. [Google Scholar]
  61. Mayhuasca, J.; Sotelo, S. Quantum Technologies for Digital Transformation and Informatica Security. Int. J. Eng. Sci. 2022, 15, 43–50. [Google Scholar] [CrossRef]
  62. Raza, H.; Baptista, J.; Constantinides, P. Conceptualizing the Role of IS Security Compliance in Projects of Digital Transformation: Tensions and Shifts between Prevention and Response Modes; ICIS: Houston, TX, USA, 2019. [Google Scholar]
  63. Trung, N.D.; Huy DT, N.; Le, T.H. IoTs, machine learning (ML), AI and digital transformation affects various industries-principles and cybersecurity risks solutions. Management 2021, 18, 10–14704. [Google Scholar] [CrossRef]
  64. Di, Z.; Liu, Y.; Li, S. Networked Organizational Structure of Enterprise Information Security Management Based on Digital Transformation and Genetic Algorithm. Front. Public Health 2022, 10, 921632. [Google Scholar] [CrossRef]
  65. Alenezi, M. Software and Security Engineering in Digital Transformation. arXiv 2021, arXiv:2201.01359. [Google Scholar]
  66. Marelli, M. Hacking humanitarians: Defining the cyber perimeter and developing a cyber security strategy for international humanitarian organizations in digital transformation. Int. Rev. Red Cross 2020, 102, 367–387. [Google Scholar] [CrossRef]
  67. Dvojmoč, M.; Verboten, M.T. Cyber (In) security of Personal Data and Information in Times of Digitization. Med. Law Soc. 2022, 15, 287–304. [Google Scholar] [CrossRef]
  68. Zarapina, L.; Mukhlynina, M.; Adamenko, A.; Mukhlynin, D.; Belokopytova, N. Issues of Legal Support of Socio-economic Policy and Environmental Security of Russia in the Context of Digital Transformation. In Proceedings of the International Scientific-Practical Conference “Ensuring the Stability and Security of Socio-Economic Systems: Overcoming the Threats of the Crisis Space” (SES 2021), Kirov, Russia, 17–18 June 2021; Sciete Press: Kirov, Russia, 2021; pp. 336–340, ISBN 978-989-758-546-3. [Google Scholar] [CrossRef]
  69. Halabi, T.; Bellaiche, M.; Fung, B.C. Towards Adaptive Cybersecurity for Green IoT. In Proceedings of the 2022 IEEE International Conference on Internet of Things and Intelligence Systems (IoTaIS), Bali, Indonesia, 24–26 November 2022; pp. 64–69. [Google Scholar]
  70. Voskresenskaya, E.; Vorona-Slivinskaya, L.; Panov, S. Digital transformation of social sector as the factor of development and security of the country. In E3S Web of Conferences; EDP Sciences: Les Ulis, France, 2019; Volume 135, p. 03075. [Google Scholar]
  71. Kuchumov, A.; Pecherictsa, E.; Chaikovskaya, A.; Zhilyaeva, I. Digital transformation in the concept of economic security of Russia and its regions. In Proceedings of the 2nd International Scientific Conference on Innovations in Digital Economy, St. Petersburg, Russia, 22–23 October 2020; pp. 1–8. [Google Scholar]
  72. Alahmadi, A.N.; Rehman, S.U.; Alhazmi, H.S.; Glynn, D.G.; Shoaib, H.; Solé, P. Cyber-Security Threats and Side-Channel Attacks for Digital Agriculture. Sensors 2022, 22, 3520. [Google Scholar] [CrossRef]
  73. Song, J.; Zhong, Q.; Wang, W.; Su, C.; Tan, Z.; Liu, Y. FPDP: Flexible privacy-preserving data publishing scheme for smart agriculture. IEEE Sens. J. 2020, 21, 17430–17438. [Google Scholar] [CrossRef]
  74. Gonçalves, M.J.A.; da Silva, A.C.F.; Ferreira, C.G. The Future of Accounting: How Will Digital Transformation Impact the Sector? Informatics 2022, 9, 19. [Google Scholar] [CrossRef]
  75. Tiron-Tudor, A.; Donțu, A.N.; Bresfelean, V.P. Emerging Technologies’ Contribution to the Digital Transformation in Accountancy Firms. Electronics 2022, 11, 3818. [Google Scholar] [CrossRef]
  76. Rodríguez-Abitia, G.; Bribiesca-Correa, G. Assessing digital transformation in universities. Future Internet 2021, 13, 52. [Google Scholar] [CrossRef]
  77. Pavlova, E. Enhancing the organisational culture related to cyber security during the university digital transformation. Inf. Secur. 2020, 46, 239–249. [Google Scholar] [CrossRef]
  78. Ribas Monteiro, L.F.; Rodrigues, Y.R.; Zambroni de Souza, A.C. Cybersecurity in Cyber–Physical Power Systems. Energies 2023, 16, 4556. [Google Scholar] [CrossRef]
  79. Liang, J.; Zhu, H.; Zhang, B.; Liu, L.; Liu, X.; Lin, H.; Tian, J.; Chen, Q. Research and Prospect of Cyber-Attacks Prediction Technology for New Power Systems. In Proceedings of the 2023 IEEE 6th Information Technology, Networking, Electronic and Automation Control Conference (ITNEC), Chongqing, China, 24–26 February 2023; Volume 6, pp. 638–647. [Google Scholar]
  80. Dagoumas, A. Assessing the impact of cybersecurity attacks on power systems. Energies 2019, 12, 725. [Google Scholar] [CrossRef] [Green Version]
  81. Diaba, S.Y.; Shafie-Khah, M.; Elmusrati, M. Cyber Security in Power Systems Using Meta-Heuristic and Deep Learning Algorithms. IEEE Access 2023, 11, 18660–18672. [Google Scholar] [CrossRef]
  82. Presekal, A.; Ştefanov, A.; Rajkumar, V.S.; Palensky, P. Attack graph model for cyber-physical power systems using hybrid deep learning. IEEE Trans. Smart Grid 2023. Early Access. [Google Scholar] [CrossRef]
  83. Kechagias, E.P.; Chatzistelios, G.; Papadopoulos, G.A.; Apostolou, P. Digital transformation of the maritime industry: A cybersecurity systemic approach. Int. J. Crit. Infrastruct. Prot. 2022, 37, 100526. [Google Scholar] [CrossRef]
  84. Khashan, O.A.; Alamri, S.; Alomoush, W.; Alsmadi, M.K.; Atawneh, S.; Mir, U. Blockchain-Based Decentralized Authentication Model for IoT-Based E-Learning and Educational Environments. Comput. Mater. Contin. 2023, 75, 3133–3158. [Google Scholar] [CrossRef]
  85. Sufyan, A.; Khan, K.B.; Khashan, O.A.; Mir, T.; Mir, U. From 5G to beyond 5G: A Comprehensive Survey of Wireless Network Evolution, Challenges, and Promising Technologies. Electronics 2023, 12, 2200. [Google Scholar] [CrossRef]
  86. Al-Taleb, N.; Saqib, N.A. Towards a hybrid machine learning model for intelligent cyber threat identification in smart city environments. Appl. Sci. 2022, 12, 1863. [Google Scholar] [CrossRef]
  87. Sandhu, K. Advancing Cybersecurity for Digital Transformation: Opportunities and Challenges. In Handbook of Research on Advancing Cybersecurity for Digital Transformation; IGI Global: Hershey, PA, USA, 2021; pp. 1–17. [Google Scholar]
  88. Azizi, N.; Haass, O. Cybersecurity Issues and Challenges. In Handbook of Research on Cybersecurity Issues and Challenges for Business and FinTech Applications; IGI Global: Hershey, PA, USA, 2023; pp. 21–48. [Google Scholar] [CrossRef]
  89. Lesmana, D.; Afifuddin, M.; Adriyanto, A. Challenges and Cybersecurity Threats in Digital Economic Transformation. Int. J. Humanit. Educ. Soc. Sci. 2023, 2. [Google Scholar] [CrossRef]
  90. Maglaras, L.; Drivas, G.; Chouliaras, N.; Boiten, E.; Lambrinoudakis, C.; Ioannidis, S. Cybersecurity in the era of digital transformation: The case of Greece. In Proceedings of the 2020 International Conference on Internet of Things and Intelligent Applications (ITIA), Zhenjiang, China, 27–29 November 2020; pp. 1–5. [Google Scholar]
  91. Nobles, C. Stress, burnout, and security fatigue in cybersecurity: A human factors problem. HOLISTICA–J. Bus. Public Adm. 2022, 13, 49–72. [Google Scholar] [CrossRef]
  92. Metawa, N.; Elhoseny, M.; Mutawea, M. The role of information systems for digital transformation in the private sector: A review of Egyptian SMEs. Afr. J. Econ. Manag. Stud. 2022, 13, 468–479. [Google Scholar] [CrossRef]
  93. Özsungur, F. Business Management and Strategy in Cybersecurity for Digital Transformation. In Handbook of Research on Advancing Cybersecurity for Digital Transformation; IGI Global: Hershey, PA, USA, 2021; pp. 144–162. [Google Scholar]
  94. Nguyen Duc, A.; Chirumamilla, A. Identifying security risks of digital transformation-an engineering perspective. In Digital Transformation for a Sustainable Society in the 21st Century: 18th IFIP WG 6.11 Conference on e-Business, e-Services, and e-Society, I3E 2019, Trondheim, Norway, 18–20 September 2019; Springer International Publishing: Berlin/Heidelberg, Germany, 2019; pp. 677–688. [Google Scholar]
  95. Kour, R.; Patwardhan, A.; Thaduri, A.; Karim, R. A review on cybersecurity in railways. Proc. Inst. Mech. Eng. Part F J. Rail Rapid Transit 2023, 237, 3–20. [Google Scholar] [CrossRef]
Sensors 23 06666 g001 550
Figure 1. Prisma diagram for our systematic literature review.
Figure 1. Prisma diagram for our systematic literature review.
Sensors 23 06666 g001
Sensors 23 06666 g002 550
Figure 2. Year-wise publication history.
Figure 2. Year-wise publication history.
Sensors 23 06666 g002
Sensors 23 06666 g003 550
Figure 3. Taxonomy of the literature.
Figure 3. Taxonomy of the literature.
Sensors 23 06666 g003
Sensors 23 06666 g004 550
Figure 4. Cybersecurity readiness framework for business organizations.
Figure 4. Cybersecurity readiness framework for business organizations.
Sensors 23 06666 g004
Disclaimer/Publisher’s Note: The statements, opinions and data contained in all publications are solely those of the individual author(s) and contributor(s) and not of MDPI and/or the editor(s). MDPI and/or the editor(s) disclaim responsibility for any injury to people or property resulting from any ideas, methods, instructions or products referred to in the content.

Share and Cite

MDPI and ACS Style

Saeed, S.; Altamimi, S.A.; Alkayyal, N.A.; Alshehri, E.; Alabbad, D.A. Digital Transformation and Cybersecurity Challenges for Businesses Resilience: Issues and Recommendations. Sensors 2023, 23, 6666. https://doi.org/10.3390/s23156666

AMA Style

Saeed S, Altamimi SA, Alkayyal NA, Alshehri E, Alabbad DA. Digital Transformation and Cybersecurity Challenges for Businesses Resilience: Issues and Recommendations. Sensors. 2023; 23(15):6666. https://doi.org/10.3390/s23156666

Chicago/Turabian Style

Saeed, Saqib, Salha A. Altamimi, Norah A. Alkayyal, Ebtisam Alshehri, and Dina A. Alabbad. 2023. "Digital Transformation and Cybersecurity Challenges for Businesses Resilience: Issues and Recommendations" Sensors 23, no. 15: 6666. https://doi.org/10.3390/s23156666

Note that from the first issue of 2016, this journal uses article numbers instead of page numbers. See further details here.

Article Metrics

Back to TopTop