KEY ISSUES FOR DIGITAL TRANSFORMATION IN THE G20

Recommendations

Info

Digital security risk has traditionally been approached as a technical problem calling for technical solutions but the changing nature and scale of digital security risk is driving governments to re-evaluate their strategies and policies in this area. In the last few years, governments and stakeholders have shifted their focus on the importance of digital security to minimise the risk to their economic and social activities. This approach recognises digital security risk as a multifaceted policy area and emphasises the importance of considering this risk from an economic and social perspective (Figure 33). Economic and social prosperity Technology Law enforcement (Cybercrime) National and international security The 2015 OECD Council Recommendation on Digital Security Risk Management for Economic and Social Prosperity (“Security Risk Recommendation”) (OECD, 2015k) reflects this new approach. It calls for the integration of digital security risk management into an organisation’s overall risk management and decisionmaking processes. This requires that CEOs, management boards and line managers understand both the opportunities ICTs can offer in terms of innovation, productivity, and competitiveness, as well as the security risk they can bring in terms of financial and reputational damages, disruption of operations, loss of innovation, etc. It also requires that organisations include digital security risk in their existing broader enterprise risk management governance framework to ensure its continuous and systematic assessment and that appropriate decisions are made on how to accept, reduce, transfer or avoid this risk. A key aspect of such a governance framework is the co-operation between economic and social decision makers and ICT security experts. While the implementation of digital security measures is necessary to reduce digital security risk which can never be eliminated decisions on the choice of security measures need to be informed by an assessment of the risk itself, the economic and social objectives and benefits at stake, and the cost and impact of the measures. This assessment aims to determine the acceptable level of risk and address the economic and social trade-offs resulting from the implementation of digital security measures. It is a challenge for organisations. A lack of appreciation of these trade-offs may result in the adoption of security measures that impose an outsized cost on an organisation relative to the benefits of reduced risk exposure. Examples include the direct and indirect cost of security measures, such as opportunity costs and efficiency losses, as well as other negative effects of security measures on the activities that they aim to protect. In addition, security measures may impose social costs if they impede the global, open, interconnected and dynamic nature of information and communication
technologies, and in particular the Internet, which is essential to economic and social prosperity. An effective approach to address the trade-offs is through the adoption by organisations of a digital risk management process that ensures that their choice of digital security measures is appropriate to the context in which they operate and commensurate with the risk they face and their economic and social objectives. In the firm context, every business must determine how best to deal with digital security and privacy risk to benefit from the online environment and achieve growth and scale. Good practices in digital security risk management and privacy protection can enhance the agility and resilience of a business, increase its competitiveness and provide opportunities for partnerships with other organisations. A 2013 survey of business leaders by The Economist Intelligence Unit (2013) suggests, however, that most companies are failing to create a culture of risk awareness. Only about one in four companies report an extensive awareness of digital risk across the organisation. This gap is becoming a public policy challenge, particularly as it relates to SMEs. SMEs and early-stage start-ups are critical to economic growth. They drive competition and innovation, and contribute to job creation. In high income economies, SMEs undertake the majority of private economic activity, accounting for more than 60% of employment and 50% of GDP (OECD, 2014e). In the United States and Canada, SMEs account for the majority of GDP in most industries. Similarly, in the European Union, SMEs represent 99% of businesses. In emerging economies, SMEs contribute on average to more than 50% of employment and 40% of GDP. In low-income developing countries, SMEs contribute significantly to broadening employment opportunities, social inclusion and poverty reduction (OECD, 2015i). According to a survey by the National Small Business Association in the United States, the average estimated cost for SMEs from digital security attacks increased from USD 8 700 to USD 20 750 between 2013 and 2014, and average theft from their bank accounts rose from USD 6 927 to USD 19 948 in the same period. So-called “fraudulent transfer schemes” are on the rise. These attacks exploit publicly available information and weaknesses in email systems to trick SMEs into transferring large sums of money into criminals' bank accounts. According to the US FBI, such schemes cost companies more than USD 1 billion globally between October 2013 and June 2015, and while companies of all sizes have lost money to such schemes, SMEs are believed to be the biggest targets (Aguilar, 2015). This finding is consistent with a 2016 report by digital security firm Symantec showing that SMEs have become the main target of “spear-phishing” attacks (based on malicious emails) among businesses (Figure 34) (Symantec, 2016). % 100 Small businesses (1-250 employees) Medium-size businesses (251-2 500 employees) Large businesses (2 500+ employees) 80 50 % 50 % 39 % 41 % 35 % 60 40 32% 19 % 31 % 25 % 22 % 20 43 % 31 % 30 % 34 % 18 % 0 2011 2012 2013 2014 2015 Source: Symantec (2016).
Page 1 and 2:
KEY ISSUES FOR DIGITAL TRANSFORMATI
Page 3 and 4:
Key Issues for Digital Transformati
Page 5 and 6:
Figures Figure 1. Fixed broadband s
Page 7 and 8:
As the cost of data collection, sto
Page 9 and 10:
Open, voluntary standards, grounded
Page 11 and 12:
Digitalisation is changing the worl
Page 14 and 15:
It is useful to start with a brief
Page 16 and 17:
In the past, there has also been un
Page 18 and 19:
Having established a positive relat
Page 20 and 21:
However, despite the rapid spread o
Page 22 and 23:
160 % 140 120 100 80 60 40 20 0 Not
Page 24 and 25:
% 100 90 80 70 60 50 40 30 20 10 0
Page 26 and 27:
show that large firms have much gre
Page 28 and 29:
% 2011-14 2006-09 60 EUIPO USPTO 50
Page 30 and 31:
component may include repatriated i
Page 32 and 33:
computers will rather increase). At
Page 34:
The risk related to cybercrime and
Page 37 and 38:
% 100 Gap 1st and 3rd quartiles Ave
Page 39 and 40:
Research has shown that the availab
Page 41 and 42:
5 4.5 4 3.5 3 2.5 2 1.5 1 0.5 0 Not
Page 43 and 44: Recent research points to a set of
Page 45 and 46: knowledge sharing by upholding the
Page 47 and 48: skilled labour. Thus, trapping reso
Page 49 and 50: wireless access, the two technologi
Page 51 and 52: network infrastructure sometimes ha
Page 53 and 54: separation of infrastructure and se
Page 55 and 56: other network on the Internet (CIDR
Page 57 and 58: Certain policies promote good use o
Page 59 and 60: Francisco Project”, for example,
Page 61 and 62: Encourage the deployment of more fi
Page 63 and 64: In telecommunications, both fixed a
Page 65 and 66: sufficiently compelling for operato
Page 67 and 68: However, data provides additional c
Page 69 and 70: deductions on investments in seed a
Page 71 and 72: early-stage investment can affect i
Page 73 and 74: The development of standards and st
Page 75 and 76: A positive example of co-operation
Page 77 and 78: As actors navigate the IoT space, t
Page 79 and 80: The private-sector-led standards pa
Page 81 and 82: Co-operation among standardisation
Page 83 and 84: Fixed-line communications, wireless
Page 85 and 86: the ICT sector tends to outpace reg
Page 87 and 88: Digitalisation is associated with f
Page 89 and 90: end user (European Commission, 2016
Page 91 and 92: The Internet model of traffic excha
Page 93: G20 economies could develop strateg
Page 97 and 98: in the United States where criminal
Page 99 and 100: about digital security risk and how
Page 101 and 102: conduct of cybercrimes and digital
Page 103 and 104: The G8 Deauville Declaration outlin
Page 105 and 106: To ensure that everyone can engage
Page 107 and 108: ICT specialists have been among the
Page 109 and 110: Initiatives to promote consumer edu
Page 111 and 112: All Welding Processing Handling Dis
Page 113 and 114: economies and societies need to per
Page 115 and 116: The development of strategies that
Page 117 and 118: The use of digital technologies is
Page 119 and 120: These adoption gaps between large f
Page 121 and 122: Figure 44 (Panel B) illustrates a s
Page 123 and 124: Frontier firms Laggards Frontier fi
Page 125 and 126: Despite the steady increase busines
Page 127 and 128: YouTube to watch media content; Ube
Page 129 and 130: Platforms are often criticised for
Page 131 and 132: The potential and pitfalls of digit
Page 133 and 134: Cross-border commerce has long gene
Page 135 and 136: Digitalisation is changing the worl
Page 137 and 138: Digital technologies have a huge re
Page 139 and 140: One approach is to accept the fact
Page 141 and 142: and income opportunities. Becoming
Page 143 and 144: South Korea has opened numerous “
Page 146 and 147:
The ongoing digitalisation of our e
Page 148 and 149:
Developing tools for assessing the
Page 150 and 151:
data across borders, transportation
Page 152 and 153:
BCG (2012), ”The Internet Economy
Page 154 and 155:
Deloitte (2015), “Connected Healt
Page 156 and 157:
Karachalios, K. and K. McCabe (2016
Page 158 and 159:
OECD (2016m), “The Internet of Th
Page 160 and 161:
OECD (2012d), Connected Minds: Tech
Page 162 and 163:
The Economist Intelligence Unit (20
Page 164 and 165:
1. Chapter 2 discusses policies for
show all

KEY ISSUES FOR DIGITAL TRANSFORMATION IN THE G20

You also want an ePaper? Increase the reach of your titles

Delete template?

Save as template?