|
Title: |
|
Authors:
|
|
Abstract: Standardized cybersecurity assessments are widely used across critical infrastructure sectors to evaluate security posture, demonstrate regulatory alignment, and identify control gaps. However, assessments are often treated as technical checklists or compliance artifacts, which limits their value for governance, oversight, and strategic decision-making. This article argues that standardized cybersecurity assessments—when aligned with governance frameworks and maturity models—function most effectively as governance instruments rather than static diagnostic tools. Using healthcare supply chain cybersecurity and energy infrastructure governance as illustrative contexts, the article shows how assessment outputs can improve leadership visibility, cross-unit comparability, prioritization, and accountability. By reframing cybersecurity assessments as governance-enabling mechanisms, this study contributes to the literature on cybersecurity governance and critical infrastructure protection while offering practical guidance for executives, boards, and policymakers responsible for systemic resilience and cyber risk oversight. DOI: http://dx.doi.org/10.51505/ijaemr.2026.11202 |
|
PDF Download |