Resource Dependency Theory and Cybersecurity Regulation

Research output: Chapter in Book/Report/Conference proceedingChapterpeer-review


We explore how cybersecurity should be incorporated into corporate governance and develop specific framework for implementing it. We consider different types of cybersecurity incidents such as ransomware and data leaks, and their impacts on companies. We then discuss how cybersecurity situates in the current corporate governance theoretical framework. Based on the Resource Dependency Theory (RDT), we develop a specific governance framework with a focus on the role of chief cybersecurity officer, the audit committee, the regulatory powers, and market enforcement mechanisms. As more companies are becoming digital native and more services provided are digital in the Web3 space, this chapter is policy relevant as it provides a theoretical basis for implementing cybersecurity within companies in the digital space and a specific framework for the implementation.
Original languageEnglish
Title of host publicationWeb3 Governance
Subtitle of host publicationLaw and Policy
EditorsJoseph Lee, Jyh-An Lee
Place of PublicationLondon
Publication statusAccepted/In press - 31 Mar 2024


  • cyber security
  • Cyber attack
  • chief cybersecurity officer
  • governance
  • digital security
  • AI


Dive into the research topics of 'Resource Dependency Theory and Cybersecurity Regulation'. Together they form a unique fingerprint.

Cite this