DOI: 10.14569/IJACSA.2024.0150878

Comparative Analysis of Small and Medium-Sized Enterprises Cybersecurity Program Assessment Model

Author 1: Wan Nur Eliana Wan Mohd Ludin
Author 2: Masnizah Mohd
Author 3: Wan Fariza Paizi@Fauzi

International Journal of Advanced Computer Science and Applications(IJACSA), Volume 15 Issue 8, 2024.

Abstract: In the digital age, Small and Medium-sized Enterprises must review and improve their cybersecurity posture to combat rising risks. This paper thoroughly compares Small and Medium-sized Enterprises cybersecurity program assessment approaches. The National Institute of Standards and Technology's Cybersecurity Framework, CyberSecurity Readiness Model for SMEs, Cybersecurity Evaluation Model, and Adaptable Security Maturity Assessment and Standardisation framework were examined. The NIST CSF is adaptable and applicable to many sectors, while the CSRM provides a standardized way to assess an organization's cyber readiness. With its resource limits and operational scales, the CSRM-SME meets SMEs' particular issues. Organizations may examine and improve cybersecurity with CSEM. The approach can be used for SMEs, higher education institutions, and industrial control systems. The ASMAS architecture is flexible for continual security enhancement due to its scalability and standardization. This comparison analysis shows each framework's strengths and weaknesses, revealing their suitability for diverse SME scenarios. This paper helps SMEs choose the best model to strengthen cybersecurity, boost resilience, and meet global standards. This paper will compare the NIST CSF, CSRM-SME, CSEM, and ASMAS cybersecurity frameworks.

Keywords: Cybersecurity; SMEs; cybersecurity program assessment models; cybersecurity assessment frameworks

Wan Nur Eliana Wan Mohd Ludin, Masnizah Mohd and Wan Fariza Paizi@Fauzi, “Comparative Analysis of Small and Medium-Sized Enterprises Cybersecurity Program Assessment Model” International Journal of Advanced Computer Science and Applications(IJACSA), 15(8), 2024. http://dx.doi.org/10.14569/IJACSA.2024.0150878

@article{Ludin2024,
title = {Comparative Analysis of Small and Medium-Sized Enterprises Cybersecurity Program Assessment Model},
journal = {International Journal of Advanced Computer Science and Applications},
doi = {10.14569/IJACSA.2024.0150878},
url = {http://dx.doi.org/10.14569/IJACSA.2024.0150878},
year = {2024},
publisher = {The Science and Information Organization},
volume = {15},
number = {8},
author = {Wan Nur Eliana Wan Mohd Ludin and Masnizah Mohd and Wan Fariza Paizi@Fauzi}
}


Copyright Statement: This is an open access article licensed under a Creative Commons Attribution 4.0 International License, which permits unrestricted use, distribution, and reproduction in any medium, even commercially as long as the original work is properly cited.

IJACSA

Upcoming Conferences

Future of Information and Communication Conference (FICC) 2025

28-29 April 2025

Computing Conference 2025

19-20 June 2025

IntelliSys 2025

28-29 August 2025

Future Technologies Conference (FTC) 2025

6-7 November 2025