Design of a Cyber Security Self-Assessment

The area of information security, which focuses on protecting the confidentiality, integrity and availability of information, has attracted a great deal of attention in recent years. Due to the constantly increasing digitalisation and networking, targeted attacks via the Internet represent a major challenge for companies of all sizes. While large companies are preparing for these attacks, the awareness and urgency of the problem of Swiss SMEs seems to be minimal. Cyber attacks are no longer directed exclusively at large companies, but are increasingly focusing on SMEs. Therefore, cyber security has become a serious issue for SMEs as well, which needs to be addressed.For cyber security to be managed efficiently in an SME, the company must first be informed about the current situation. In order to measure the maturity of cyber security, cyber security self-assessments are a central starting point to understand which threats and risks exist and which information systems are affected. However, the problem is that even if SMEs have carried out such self-assessments, they do not take actions....