A Documentary Research on Synthesizing the Components of Cyber Risk Management Concepts in the Era of Digital Disruption

Authors

  • Tunvarat Kongnun 1Lecturer, Public Administration Program, Faculty of Social Sciences and Local Development, Pibulsongkram Rajabhat University, Thailand
  • Tanastha Rojanatrakul Rojanatrakul Lecturer, Public Administration Program, Faculty of Social Sciences and Local Development, Pibulsongkram Rajabhat University, Thailand

Keywords:

ดิจิทัล ดิสรัปชัน, Cybersecurity , Digital Disruption

Abstract

The era of Digital Disruption has significantly transformed the cybersecurity landscape of the public sector. Emerging technologies such as Cloud Computing, the Internet of Things (IoT), Artificial Intelligence (AI), Big Data, and Blockchain have enhanced efficiency, accessibility, and transparency in government services; however, they have simultaneously expanded attack surfaces and increased the complexity of cyber threats. This study aims to (1) synthesize the conceptual components of cyber risk management in the public sector, and (2) examine the relationship between Digital Disruption and Cyber Resilience across national and international governmental contexts. A documentary research method was employed, drawing on academic literature, global cybersecurity frameworks, policy reports, and international research databases.

            The findings reveal seven core components of cyber risk management in the public sector: governance and policy, risk identification and assessment, preventive measures, monitoring and detection, incident response and recovery, human cyber awareness, and digital resilience. Digital Disruption has shifted cyber risk from a technical concern to a strategic state-level issue characterized by interdependence, shared vulnerabilities, and cross-organizational ecosystems, requiring proactive and predictive security approaches supported by data analytics and AI.

            Despite growing scholarly attention, research gaps remain-particularly the dominance of technical perspectives over behavioral and societal dimensions, limited empirical studies on causal relationships between Digital Disruption and Cyber Resilience, and the absence of integrated analytical frameworks linking cyber risk to economic stability, public trust, and human security. These gaps present opportunities for future research, especially in developing public policy, organizational models, and resilience-based cybersecurity strategies.

 

References

คงนุ่น, ธัญวรัตน์. (2568). ปัจจัยที่ส่งผลต่อความสำเร็จของการพัฒนาวัฒนธรรมความเสี่ยงของ

องค์กรภาครัฐ: กรณีศึกษาที่ว่าการอำเภอเมือง จังหวัดอุตรดิตถ์. วารสารการจัดการและการ

พัฒนาท้องถิ่น มหาวิทยาลัยราชภัฏพิบูลสงคราม, 5(1), 17–27.

นงลักษณ์ วิรัชชัย. (2541). การวิจัยทางพฤติกรรมศาสตร์. กรุงเทพมหานคร: จุฬาลงกรณ์มหาวิทยาลัย.

Al-Nimer, M., Abbadi, S. S., Al-Omush, A., & Ahmad, H. (2021). Risk management practices and firm performance with a mediating role of business model innovation: Observations from Jordan. Journal of Risk and Financial Management, 14(3), 113.

Aromataris, E., & Munn, Z. (Eds.). (2024). JBI manual for evidence synthesis. Joanna

Briggs Institute. https://jbi-global.atlassian.net/wiki/spaces/MANUAL

Committee of Sponsoring Organizations of the Treadway Commission. (2017).

Enterprise risk management: Integrating with strategy and performance.

COSO.

IBM Security. (2023). Cost of a data breach report 2023. IBM Corporation.

International Organization for Standardization. (2022). ISO/IEC 27001: Information security management systems. ISO.

ISACA. (2019). COBIT 2019 framework: Governance and management objectives. ISACA.

Scott, J. (1990). A matter of record: Documentary sources in social research. Polity Press.

WEF – World Economic Forum. (2024). Global risks report 2024. World Economic Forum

Published

2026-06-30