Applying DIKW Pyramid to Cyber-Attacks and Supply Chain Disruptions

Data

The raw data related to cyber-attacks and supply chain disruptions consists of disordered signals or signs including network activity logs or records of supply chain operations disruption. The information may be connected to different activities such as outlier behaviour, log-in attempts, or chain of supply irregularities. They provide basic knowledge to deal with the risks, vulnerabilities, and incidents in advance (August et al., 2022). Nevertheless, they can only be considered raw data with inherent context and meaning. Therefore, this raw information must be processed, aggregated and analyzed to arrive at meaningful data. Thus, this transformation can push the raw data to contribute to understanding the specific measures, vulnerabilities, and consequences that are reflective of cyberattacks and supply chain disruptions.

The raw and unstructured data on cyberattacks and supply chain disruptions, like logs of attacks or operations of the supply chain breakdown, give the first clue to detect potential threats. They can play a paramount role in initiating threat perception, but at a bare minimal level, they need the precise structure and context necessary for an instant action. These can be the variations of patterns exhibited in the network traffic, unexpected access attempts or strange alterations in the supply chain. The data in their raw form must be assembled for data processing, analysis and interpretation (Yeboah-Ofori et al., 2021). For instance, this can be done through developing proper mechanisms for collecting, interpreting and managing these raw signals. Thus, the obtained data can be used to defend organizations against security breaches and to deal with the vulnerabilities in both digital and physical supply chains.

Information

Proper contextualization and organizing of data are instrumental in understanding particular cybercrimes and incidents. Therefore, this thorough data collection processthorough data collection process, comprehensive analysis and structuring provides valuable insights into the methods, vectors and targets of cyber-attacks. Additionally, they reveal the underlying relationships, emerging patterns and critical features of the attacks, providing an understanding of how cybercriminals operate. Moreover, the structured nature of this data translates into a more precise understanding of chain vulnerabilities, which necessitates the identification of potential disruption (Pandey et al., 2020). As a result, this contextualization and organization enables the unorganized data to become essential in identifying vulnerabilities that can lead to potential disruptions. Thus, through this transformation, organizations can design and apply their proactive defences and strategic measures that leverage the insights gathered from the structured data to strengthen their cyber resilience and protect their supply chain.

Structured and synthesized data also plays a crucial part in providing intelligence to decision-makers, giving them a comprehensive understanding of cyberattacks and weaknesses within cyberspace. Therefore, this overview includes insider knowledge of the extent of the various cyberattack methods and attack pathways by exposing their final goal and specific targets. The data reflect systemic vulnerabilities that can be traced all along the supply chains and design and data generation bottlenecks to prevent firms from cyber attacks and malicious disruption (Lian & Erichsen, 2019). As a result, organizations become familiar with diverse threats to better design preventive and responsive strategies against cyberattacks and improve their supply chain resiliency. Thus, with this sophisticated intelligence capability, organizations can actively reduce the vulnerability of their operations to new cyber threats and ensure that they remain ahead of disruptions and safeguard critical information.

Knowledge 

The process of assembling various data sources over time is essential to creating concepts and theories in connection with cyber security and supply chain management. For instance, this combination of various pieces of information and wisdom leads to a harmonious and comprehensive body of knowledge. Therefore, this includes identifying the evolving attack patterns and trends and recognizing the new threats alongside the techniques used by attackers to cause disruptions (Pandey et al., 2020). In addition, such findings can be combined to create best cybersecurity practices, resulting in a strong base for developing security strategies. Employing this technique enables firms and dependencies and utilizes them to develop a robust risk management plan.

Combining data sources helps stakeholders observe the relationship between cybersecurity and the supply chain. Therefore, this approach enables addressing complex issues with the creation of practical insights, impacting decisions and strategies to combat cyber-attacks and malicious disruptions from attackers. In addition, this combination fosters assessing sensitive areas of supply chains and, subsequently, uses the appropriate strategies to strengthen operational reliability. A combination of different perspectives and expertise gives companies the advantage of staying a step ahead of changing cyber threats and supply chain processes, which, in turn, adds to a comprehensive approach to the security and operational sustainability of the organization (August et al., 2022). Thus, such an approach favourably influences the decision-making process of stakeholders because it provides them with knowledge and reinforces their resistance and supply chain change management.

Wisdom 

In the field of cyber-attacks and the disruptions of supply chains, wisdom is essential in knowing the results and complexity of these issues. For instance, it involves the understanding of the technical aspects and the ability to base the decisions on ethical considerations and the general public’s well-being. Therefore, wisdom in cyber-security involves choosing the most efficient actions to mitigate or deal with these threats efficiently (Yeboah-Ofori et al., 2021). In addition, it includes the ability to forecast a range of potential risks and challenges, which enable proactive changes to operations and ensure uninterrupted access to facilities and services. Fostering wisdom in handling such issues may be how organizations can cope with dynamic situations with foresight and responsibility, minimizing disruptions while maintaining the welfare of the stakeholders and the entire society.

References 

Yeboah-Ofori, A., Islam, S., Lee, S. W., Shamszaman, Z. U., Muhammad, K., Altaf, M., & Al-Rakhami, M. S. (2021). Cyber threat predictive analytics for improving cyber supply chain security. IEEE Access, p. 9, 94318–94337.

Pandey, S., Singh, R. K., Gunasekaran, A., & Kaushik, A. (2020). Cyber security risks in globalized supply chains: conceptual framework. Journal of Global Operations and Strategic Sourcing, 13(1), 103-128.

August, T., Noh, D., Shamir, N., & Shin, H. (2022). Cyberattacks, Operational Disruption and Investment in Resilience Measures. Available at SSRN 4032257.

Lian, M., & Erichsen, P. M. (2019). An empirical investigation into the sources of supply chain disruptions (Master’s thesis, University of Agder).