Jake Smith

My name is Jake Smith. I am a senior at ODU (Old Dominion University) studying cybersecurity. I grew up in Fredericksburg, Virginia. A few goals of mine include graduating at the end of the 2026 year with my Bachelor’s degree in cybersecurity, then get a job with the government doing cybersecurity.

Article 1

Introduction/BLUF
The goal of this article is to explore the relationship between cybersecurity practices and
financial performance, primarily with some regard to the banks in the Gulf Cooperation
Council countries, during the COVID-19 pandemic period.
Bottom Line Up Front: The research revealed that with more adopted levels of
cybersecurity, the financial performance, specifically Return on Assets, of the GCC banks
was significantly positively impacted, thereby emphasizing the need for cybersecurity from
a technical and social-economic point of view.
Relation / Connection to Social Science Principles
The article has incorporated some of the most important social science principles:
Institutional Trust – The article has emphasized the importance of strong cybersecurity
measures to enhance public trust in financial institutions.
Rational Choice Theory – Financial institutions are investing heavily in cybersecurity
measures to ensure minimized losses and enhanced financial gains.
Social Stability and Order – Financial institutions have to ensure strong cybersecurity
measures to maintain social order by ensuring financial stability.
Technological Determinism – The outbreak of the COVID-19 pandemic has caused
organizations to adopt digital technologies, thereby affecting organizational behavior.
Governance and Regulation – The article has emphasized the importance of regulatory
measures in enhancing organizational cybersecurity.
Risk Society Theory – The article has emphasized the importance of cybersecurity
measures to deal with modern-day cyber threats.
Organizational Behavior – The article has emphasized the importance of organizational
structures in enhancing cybersecurity measures within organizations.
The social science principles have shown that cybersecurity is not just limited to
technology but also encompasses many other important aspects of social science.
Research question/ hypothesis/ variable

  1. What is the level of cybersecurity that was listed?
  2. How does the level of cybersecurity relate to the financial performance?
    Hypothesis
    Banks that have larger levels of security have a higher financial performance
    Independent variable
    The cybersecurity level
    Dependent variables
    ROA’s and EPS
    Types of Research Methods Used
    The quantitative approach was used in conducting the research, where the data was
    collected from secondary sources such as financial databases, annual reports, and stock
    exchange sites, and from primary sources such as a cybersecurity checklist sent to ICT
    and information security managers of banks.
    Types of Data Analysis Used
    The authors used the following methods of data analysis:
    To evaluate the levels of cybersecurity in the GCC countries, descriptive statistical
    analysis was used.
    To evaluate the relationship between cybersecurity levels and financial performance,
    multiple linear regression analysis was used.
    To evaluate the differences between the GCC countries in terms of cybersecurity adoption,
    post hoc comparisons were used.
    Relation to Other Course Concepts
    The study is related to other thoughts and ideas that were talked about in other course
    studies, primarily those that discussed cybercrime, victimization, and behavioral theories.
    The study validates some of those theories that an organization fails to implement good
    security measures is prone to victimization.
    Relation to the Concerns or Contributions of Marginalized Groups
    This study may not explicitly discuss or touch on issues concerning marginalized groups,
    but its contribution to these groups is significant. Cybersecurity failure has particularly
    negative effects on vulnerable groups that bank and use bank services. Good cybersecurity
    measures are crucial to protect vulnerable groups from economic fraud, identity theft, and
    economic exclusion from digital financial services. Good cybersecurity measures are
    crucial to ensure that vulnerable groups have access to financial services.
    Overall Societal Contributions of the Study / Conclusion
    In conclusion, the study makes a significant societal contribution by establishing that
    cybersecurity is not only a technical necessity but also a social and economic imperative.
    The study has been able to establish a link between cybersecurity practices and financial
    performance during the COVID-19 pandemic. The study has been able to make a
    significant contribution to society by establishing that cybersecurity is a social and
    economic imperative that is essential for the stability of society.

Article #2

Introduction
In this article review will focus on the study titled “International Responsibility Arising
from Cyberattacks in the Light of the Contemporary International Law” authored by Faisal Saleh
Alabbadi, Emad Mohammad Al Amaren, and Sultan Ibrahim Aletein. The study was published
in the International Journal of Cyber Criminology, Vol. 16, No. 1. The paper highlights the
difficulties that cyberattacks pose in relation to the legal system while examining whether the
law can address accountability for cyber damage to individuals, states, or organizations. The
paper is important in cyber criminology since it discusses the relationship between cybercrimes,
law, public policy, and governance.
How the Topic Relates to the Principles of the Social Sciences
The current topic is highly relevant to the field of social sciences, considering that it deals
with how laws, institutions, human behavior, and powers function within society. A cyberattack
is more than a technical occurrence. It is a social phenomenon conducted by either individuals,
groups, or state entities in digital space. Social sciences provide answers to the questions of what
causes such acts, how societies react to them, and how legal institutions deal with them. As the
article touches on such matters as accountability and responsibility, it fits well into the fields of
political science, criminology, sociology, and legal sciences.
Research Questions, Hypotheses, Independent Variable, and Dependent Variable
The major research problem posed by this study is: What is the position of international
law regarding responsibility in case of cyberattacks? Another research problem is whether the
legal approach used today is enough to deal with classification, regulation, and consequences of
cyberattacks on an international scale. The article itself is more legal and conceptual than
experimental. Therefore, it cannot pose any formal statistical hypotheses. Nevertheless, one may
guess that such a hypothesis is that current international laws are not enough to solve the
problems caused by cyberattacks.
It can be reasonable to interpret the variables as follows:
Independent variable: Cyberattacks, along with technological progress and digital threats.
Dependent variable: Assigning legal responsibility for cyberattacks.
Types of Research Methods Used
The research design is that of a qualitative legal research approach. Within this content
analysis the researchers conducted it to establish some major concepts and themes concerning
issues of cyberattacks and accountability. The other approach applied to the article includes
juridical and descriptive approaches, which indicate that the paper is informed by an
interpretation of legal principles and written documentation as opposed to surveys or
experimental studies. This is a suitable approach to be adopted considering the aims of the
article.
Types of Data and Analysis Done
In this case, secondary sources of data were used, especially legal texts and literature on
cyber-attacks and international laws. Data that was collected using documentation and other
forms of legal sources, implying that the researchers looked at previous laws and legal concepts
and not survey and interview responses. The analysis techniques that were used are qualitative
rather than quantitative. Some of the concepts used by the authors to organize their research are
legal adaptation of cyber-attacks, technology advancement, and international responsibility.
How Concepts from the PowerPoint Presentations Relate to the Article
A number of concepts mentioned during the PowerPoint lecture on cyber criminology or
social science can be linked with this particular reading. Among these are globalization and
social control, owing to the fact that the readings discuss how the attacks are not bound by any
geographic constraints and how there are issues with jurisdiction, as well as how the topic
addresses regulation of deviant or criminal activity through international law. Additionally, it can
be seen that the topic links in with deviance and crime, with a focus on cyber victimization.
How the Topic Relates to the Challenges, Concerns, and Contributions of Marginalized
Groups
In addition to this, the topic is related to marginalized groups since the impacts of cyber-
attacks and poor legislation do not affect all of the parties equally. Those countries that have a
low capacity in terms of cybersecurity, inadequate legislation, and poor relations with other
states are likely to be more prone to cyber-attacks and lack the necessary means to receive
justice. Similarly, those communities which have been marginalized in society, and which are
politically and economically disadvantaged are bound to face more harm in case of cyber-attacks
targeting key facilities. On the positive side, however, the article benefits marginalized groups.
Overall Contributions of the Study to Society
It is quite significant the contribution of the article to society at large. This is due to the
fact that the article explains how cyberattacks are more than technical disturbances; they are
legal issues and social problems that are contrary to world peace, justice, and accountability. The
most significant contribution made by the article to knowledge is the recognition of the existence
of legal shortcomings in dealing with cyberattacks. The article calls for nations to enhance their
cybersecurity laws as a way of remedying the problem. Why is this particular contribution
relevant? This is due to the fact that contemporary societies have become dependent on computer
technology.
Conclusion
In summary, “International Responsibility Arising from Cyberattacks in the Light of the
Contemporary International Law” is a key article that addresses both the legal and sociological
issues surrounding cyber threats. The research paper has a strong linkage with social sciences
since it deals with institutions, law, governance, power relations, and human behavior in
cyberspace. Applying the qualitative legal analysis techniques that include thematic content
analysis and juridical approaches, it is possible to determine that the law does not properly
manage the issue of cyberattacks and responsibility for them. Thus, considering such an
emphasis on legal shortcomings and policy recommendations, the paper can be viewed as quite
relevant to the field of cybersecurity research and practice.

Cybersecurity Professional Paper

Cybersecurity Analyst: Applying Social Science in Cyber Defense
Introduction
It is important to remember that there needs to be a cybersecurity analyst to help protect
individuals or firms from the growing number of cybersecurity threats. Although this position is
thought to be more technical, it involves many concepts from social sciences, such as
psychology, sociology, and economics. The cyber threats tend to exploit human behavior rather
than technology. Therefore, the analysts must have knowledge regarding how people act and
behave within systems. The paper will focus on the use of social sciences by cybersecurity
analysts when analyzing human behaviors in their regular activities.
Role of a Cybersecurity Analyst
The duties of a cybersecurity analyst may involve various activities such as network monitoring,
threat identification, incident handling, and infrastructure protection. Every day, a cybersecurity
analyst performs network log review, investigation, and education about cybersecurity issues for
users. One of the main reasons for cybersecurity breaches is attributed to human mistakes
according to CISA (2023). The importance of the behavior of humans is because cyber attacks
are primarily targeted towards people and not computer systems.
Psychology and Human Behavior
Cybersecurity and hacker strategies are among the most crucial topics within the field of
psychology. Social engineering is an approach that makes use of elements of psychology like
trust, fear, urgency, and authority. In phishing attacks, urgency is used to convince users into
clicking on malicious links without considering the implications. Among other tasks, what
3
security experts do is employ psychology against social engineering tactics and schedule classes
(FBI, 2022).
Sociology and Organizational Culture
The knowledge of sociology can assist the analysts dealing with cybersecurity in
understanding how people relate to each other in an organizational environment. The key point
here is that the culture of an organization plays a vital role in determining the level of
commitment of the employees towards cybersecurity issues. Therefore, cybersecurity analysts try
to promote a “security culture.”.
Economics and Decision-Making
Economic principles govern decisions related to cybersecurity. Analysts have to consider the
cost of deploying security controls against the possible monetary losses that may arise from a
cyber attack. Risk management involves prioritizing risks depending on their probability and
impact in order to deploy resources efficiently.
Impact on Marginalized Groups and Society
The cybersecurity community should be cautious about the effects of their actions on
disadvantaged populations. The people that are not well versed in computer skills and technology
and even do not have adequate access to computer technology are more vulnerable to the threat
of cybercrime. They adopt strategies in their cybersecurity approach that are inclusive in nature,
such as good communication and educational training.
4
Conclusion
The social sciences have been crucial in aiding the efforts of cybersecurity analysts in
safeguarding the resources belonging to their organizations from any cyber attacks that may
occur. The social sciences give cybersecurity analysts the necessary insights about the human
nature, process improvement in organizations, and proper judgment-making.

Case Study

Case overview and analysis
Equifax is one of the largest credit reporting agencies in the U.S. In 2017 they
experienced a data breach that impacted a little under 150 million people. Within this breach the
total amount of damages was upwards of 425 million dollars according to the Federal Trade
Commission. Because of this breach, individuals experienced a compromise of their personal
locations, phone numbers, social security numbers, and even driver license numbers.
According to epic.org, “The U.S government has indicted four different members of
China’s military on charges of hacking Equifax to exploit the personal data of 150 million
Americans.” The members from the Chinese military were able to get into the company’s
network, have unlawful access to their computers, and was able to take classified personal
information. The same source, epic.org documented that Equifax has had “weak” digital security.
In 2015, there was another breach that resulted in over 430,000 people had their tax and yearly
income stolen. (Epic.org Electronic Privace Information Center, 2017-2018)
Solutions
The company implemented solutions after this which included patch management,
monitoring the activity of the network, ensuring that sensitive data is encrypted, and having an
incident response readiness. Some of the potential challenges that I think that this company will
face with the new policies is that someone can miss something while monitoring the network or
making sure that the sensitive data is encrypted.
Interdisciplinary integration
Having cybersecurity in place is important because you want to make sure that there is a
strong network and internet that is properly working and ensuring that hackers are not able to
obtain personal identifiable information. Social sciences come into play since Equifax and others
are ethically responsible for keeping a person’s bank information safe.
Over the years Equifax has learned that since having a penetrable cyber aspect, they have
spent around 1.5 billion dollars making sure that their technology and security infrastructure is
more secure according to Mckinesy & Company. With that in mind, the company’s technology
staff comes together to go reveal and identify the red flags in their defense system and
technology. According to the same website, McKinesy & Company, they document that “the
security team reports quarterly on the status of each key project.” This is to ensure that their
technology and their network stays secure and up to date. According to the Equifax website, the
company has implemented new resources that includes using AI, which will help improve
security and defend against threats.
Lessons learned
The main reason why this Equifax breach started is because the company did not realize
that they had an outdated certificate that was being used by a device found on the network. That
same certificate had been expired a little short of a year according to digicert.com. By making
this mistake, it cost the company close to 6 million in Federal Trade Commission (FTC) fines
alone according to digicert.com. Over the years the company has learned that instead of having a
sub-par cyber system, they have spent around 1.5 billion dollars making sure that their
technology and security infrastructure is more secure according to Mckinesy & Company.