CSR and the Corporate Cyborg: Ethical Corporate Information Security Practices
Journal Business Ethics, 2009
Posted: 20 Sep 2009 Last revised: 25 Nov 2013
Date Written: September 15, 2009
Relying heavily on Thomas Dunfee’s work, this article conducts an in-depth analysis of the relationship between law and business ethics in the context of corporate information security. It debunks the two dominant arguments against corporate investment in information security and explains why socially responsible corporate conduct necessitates strong information security practices. This article argues that companies have ethical obligations to improve information security arising out of a duty to avoid knowingly causing harm to others and, potentially, a duty to exercise unique capabilities for the greater social good and to buttress stable functioning of social institutions.
Keywords: business ethics, law, corporate social responsibility, information security
JEL Classification: K29
Suggested Citation: Suggested Citation