Abstract: The financial sector is exposed to the risk of cyber-attacks like any other industrial sector. Furthermore, the topic of CybeRisk (cyber risk) has become particularly relevant given that Information Technology (IT) attacks have increased drastically in recent years, and cannot be stopped by single organizations requiring a response at international and national level. IT risk is never a matter purely for the IT manager, although he clearly plays a key role. A bank's risk management function requires a thorough understanding of the evolving risks as well as the tools and practical techniques available to address them. Upon the request of European and national legislation regarding CybeRisk in the financial system, banks are therefore called upon to strengthen the operational model for CybeRisk management. This will require an important change with a more intense collaboration with the structures that deal with information security for the development of an ad hoc system for the evaluation and control of this type of risk. The aim of the work is to propose a framework for the management and control of CybeRisk that will bridge the gap in the literature regarding the understanding and consideration of CybeRisk as an integral part of business management. The IT function has a strong relevance in the management of CybeRisk, which is perceived mainly as operational risk, but with a positive tendency on the part of risk management to the identification of CybeRisk assessment methods that are increasingly complete, quantitative and able to better describe the possible impacts on the business. The paper provides answers to the research questions: Is it possible to define a CybeRisk governance structure able to support the comparison between risk and security? How can the relationships between IT assets be integrated into a cyberisk assessment framework to guarantee a system of protection and risks control? From a methodological point of view, this research uses a case study approach. The choice of “Monte dei Paschi di Siena” was determined by the specific features of one of Italy’s biggest lenders. It is chosen to use an intensive research strategy: an in-depth study of reality. The case study methodology is an empirical approach to explore a complex and current phenomenon that develops over time. The use of cases has also the advantage of allowing the deepening of aspects concerning the "how" and "why" of contemporary events, on which the scholar has little control. The research bases on quantitative data and qualitative information obtained through semi-structured interviews of an open-ended nature and questionnaires to directors, members of the audit committee, risk, IT and compliance managers, and those responsible for internal audit function and anti-money laundering. The added value of the paper can be seen in the development of a framework based on a mapping of IT assets from which it is possible to identify their relationships for purposes of a more effective management and control of cyber risk.
Abstract: International human rights treaties ensure basic rights to all people, regardless of nationality. These treaties have developed in a predominantly Western environment, and their implementation into non-western contexts often raises questions of the transfer-ability of value systems and governance structures. International human rights treaties also postulate the right to the full enjoyment and expression of one’s own culture, known as cultural rights. Many cultural practices and traditions in South Sudan serve as an obstacle to the adaptation of human rights and internationally agreed-upon standards, specifically those pertaining to women’s rights and gender equality. This paper analyzes the specific social, political, and economic conflicts between women’s rights and cultural rights within the context of South Sudan’s evolution into a sovereign nation. It comprehensively evaluates the legal status of South Sudanese women and –based on the empirical evidence- assesses gender equality in four key areas: Marriage, Education, Violence against Women, and Inheritance. This work includes an exploration into how South Sudanese culture influences, and indeed is intertwined with, social, political, and economic spheres, and how it limits gender equality and impedes the full implementation of international human rights treaties. Furthermore, any negative effects which systemic gender inequality and cultural practices that are oppressive to women have on South Sudan as a developing nation are explored. Finally, those areas of conflict between South Sudanese cultural rights and international women’s rights are outlined which can be mitigated or resolved in favor of elevating gender equality without imperializing or destroying South Sudanese culture.
Abstract: This main purpose of the study reported here was to
investigate the extent to which the form of school
governance (particularly decision-making) had an impact upon the
effectiveness of the school with reference to parental involvement,
planning and budgeting, professional development of teachers,
school facilities and resources, and student outcomes. Particular
attention was given to decision-making within the governance
arrangements. The study was based on four case studies of high
schools in New South Wales, Australia including one government
school, one independent Christian community school, one
independent Catholic school, and one Catholic systemic school.
The focus of the research was principals, teachers, parents, and
students of four schools with varying governance structures. To
gain a greater insight into the issues, the researchers collected
information by questionnaire, semi-structured interview, and
review of school key documents. This study found that it was not
so much structure but the centrality of the school Principal and the
way that the Principal perceived his/her roles in relation to others
that impacted most on school governance.
Abstract: The study aims to investigate the impact on board and
audit committee characteristics and firm performance before and
after the revision of MCCG (2007) on GLCs over the period 2005-2010. We used Return on Assets (ROA) as a proxy for firm performance. The data consists of two groups; data collected before
and after the amendments of MCCG (2007). Findings show that
boards of directors with accounting / finance qualifications (BEXP)
are statistically significant with performance for period before the amendments. As for audit committee members with accounting or
finance qualifications (ACEXP), correlation results indicate a
negative association and non-significant results for the years before
amendments. However, the years after the amendments show
positive relationship with highly significant correlations (1%) to ROA. This indicates that the amendments of MCCG 2007 on the
audit committee members- literacy in accounting have impacted the governance structures and performance of GLCs.
Abstract: This study examines the influence of information
transparency and corporate governance on purchase directors and
officers liability (D&O) insurance decisions. The results show that
companies with greater information transparency have significant
demand for D&O insurance. Greater transparency in voluntary
disclosures is significantly and positively associated with demand for
insurance, indicating that increasing the degree of information
disclosure reduces information asymmetry for insurers, which
stimulates their willingness to provide greater protection.
Analysis of insured and uninsured subsamples indicates that
uninsured companies have superior corporate governance compared to
insured companies. Although insured companies tend to have weaker
corporate governance structures, they appoint Big 4 firms or industry
experts to compensate for the weakness of their corporate governance.
Empirical results indicate that purchasing D&O insurance can
strengthen external corporate governance and increase companies’
willingness to voluntarily provide more transparent information.
Abstract: This paper discusses the theory behind the existence of an idealistic model for business network governance and uses a clarifying case-study, containing governance structures and processes within a business network framework. The case study from a German pharmaceutical industry company complements existing literature by providing a comprehensive explanation of the relations between supply chains and business networks, and also between supply chain management and business network governance. Supply chains and supply chain management are only one side of the interorganizational relationships and ensure short-term performance, while real-world governance structures are needed for ensuring the long-term existence of a supply chain. Within this context, a comprehensive model for business governance is presented. An interesting finding from the case study is that multiple business network governance systems co-exist within the evaluated supply chain.