The article I’ve chosen to review is “Executive decision-makers: a scenario-based approach to assessing organizational cyber-risk perception” by Simon Parkin, Kristen Kuhn, and Siraj A. Shaikh. After viewing the article, I noticed it related to the social science principles in a few ways. It relates to Ethical Neutrality because they looked through potential risks that could affect things ethically such as asking for consent, informing about data collection, digital needs, and distancing protocols because this was done during Covid’s reign. It relates to parsimony because they performed a controlled experiment and gave a summary of what kinds of scenarios were to be worked with in their experiments. It also relates to objectivity because based on how they were able to work on their experiment, they used a survey from someone named Rhee who showed if managers showed optimism towards security risks or not.

            The research questions that would arise from this article as shown from within the article would be “Does a scenario-based approach to articulation of business risks effectively capture insights from business decision makers?” and “Do decision-makers across the wider business perceive whether cyber-risk relates to their domain of decisions?” because the article shows information based on different portions of a company with certain risk scenarios. The hypothesis that seems to come from this article would be that the people in the groups that are older and have more experience with risk would know what kinds of threats are more important. A research method that they used was an online workshop for studying the scenarios. They also held control groups given specific roles within the groups as well as the groups being different age groups. They also made another set of surveys within the groups that were smaller sets of risks to work about but were given no more than four. They had an observer in each group as well to watch over each group in the 3 hours and 15 minutes that they were given to provide for the surveys. The types of data that they got from the surveys was a graph showing how many participants that included each risk category in their rankings for how high or low the risk is. Another type of data they found was a graph showing how dangerous the risks are after the groups worked together through private sector and state sector. The last set of data they found was with each scenario, which groups thought were more important compared to the other scenarios based on four different graphs with each scenario’s risk category.

            It relates to module 5’s behavior and risk because depending on different types of risk based on the different generations of people in the work area, which could potentially have delinquents in each area of expertise and age. People can also have different behaviors on risk in companies based on how much they have done related to their jobs. The article relates to classical experiments because it has a control group being the groups as well as pretests and post-tests. The article also relates to ethnic neutrality because within their studies, they thought about the ethicality of their subjects and allowed them to have breaks and allowed, while also giving the people distancing protocols with covid. It relates to peer networks as well with cybersecurity, because if the coworkers got malware on their computers, it could affect the entire company. It also relates to human factors because of risk factors not being taken seriously and things going wrong due to human error.

            One of the marginalized groups I feel this affects would be age groups because depending on how old the person is, they could have varying amounts of knowledge in risk management, which could lead to potential issues. Indigenous people could also be affected because they could be affected from those who know more than others and could potentially be laughed at about their knowledge of risk or they could be singled out because of it, with some not teaching the other indigenous about what they could do to help. This contributes to society in a way that helps large companies know how important that risk factors can be so that they don’t have serious consequences when they occur. It also helps contribute to letting the world know that risk is important to other kinds of groups and companies to let them know that it’s just as easy to affect a large company as it is to affect them, making it so that they rethink their views on risk assessment.

Works Cited

Parkin, Simon, et al. “Executive Decision-Makers: A Scenario-Based Approach to Assessing Organizational Cyber-Risk Perception.” Academic.Oup.Com, Journal of Cybersecurity, 21 Aug. 2023, academic.oup.com/cybersecurity/article/9/1/tyad018/7246580?searchresult=1.