DOI: 10.14569/IJACSA.2026.0170166

Enhancing Business Cybersecurity Through Integrated Defense and Incident Response: A Comparative Decision Framework

Author 1: Jurgen Mecaj

International Journal of Advanced Computer Science and Applications(IJACSA), Volume 17 Issue 1, 2026.

Abstract: Business operations increasingly depend on digital workflows, hybrid infrastructures, and third-party ecosystems, making cybersecurity incidents a direct business continuity and governance problem rather than solely a technical concern. This paper proposes an integrated cyber defense and defense-to-response decision framework for organizations seeking to reduce exposure to external attacks and unauthorized access while improving incident detection, containment, and recovery. The framework aligns governance and control selection with NIST Cybersecurity Framework (CSF) 2.0, operational incident response considerations with NIST SP 800-61 Revision 3, control requirements with ISO/IEC 27001:2022, prioritized safeguards with CIS Controls v8.1, and adversary-behavior mapping with the MITRE ATT&CK Enterprise Matrix. We define an evaluation model that combines 1) coverage mapping across prevent-detect-respond-recover functions, 2) multi-criteria decision analysis (MCDA) for cost, complexity, and risk reduction trade-offs, and 3) a playbook-oriented response design for high-frequency attack paths relevant to business environments. A worked comparative example demonstrates how three strategy bundles (traditional perimeter controls, defense-in-depth with SIEM, and a Zero Trust + EDR + SOAR approach) can be ranked using weighted criteria and incident lifecycle metrics. The paper concludes with an implementation roadmap and measurement plan to convert the framework into an evidence-based program that supports executive decision-making and continuous improvement.

Keywords: Cyber defense; incident response; business continuity; NIST CSF 2.0; SP 800-61r3; ISO/IEC 27001:2022; CIS Controls v8.1; MITRE ATT&CK; Zero Trust; EDR; SOAR; MCDA

Jurgen Mecaj. “Enhancing Business Cybersecurity Through Integrated Defense and Incident Response: A Comparative Decision Framework”. International Journal of Advanced Computer Science and Applications (IJACSA) 17.1 (2026). http://dx.doi.org/10.14569/IJACSA.2026.0170166

@article{Mecaj2026,
title = {Enhancing Business Cybersecurity Through Integrated Defense and Incident Response: A Comparative Decision Framework},
journal = {International Journal of Advanced Computer Science and Applications},
doi = {10.14569/IJACSA.2026.0170166},
url = {http://dx.doi.org/10.14569/IJACSA.2026.0170166},
year = {2026},
publisher = {The Science and Information Organization},
volume = {17},
number = {1},
author = {Jurgen Mecaj}
}


Copyright Statement: This is an open access article licensed under a Creative Commons Attribution 4.0 International License, which permits unrestricted use, distribution, and reproduction in any medium, even commercially as long as the original work is properly cited.

IJACSA

Upcoming Conferences

Computer Vision Conference (CVC) 2026

21-22 May 2026

Computing Conference 2026

9-10 July 2026

Artificial Intelligence Conference 2026

3-4 September 2026

Future Technologies Conference (FTC) 2026

15-16 October 2026