PDF iconDownload This Paper
Open PDF in Browser
Add Paper to My Library
Permalink
Using these links will ensure access to this page indefinitely
Copy URL
Copy DOI

Cyber Risk and Security Investment

41 Pages Posted: 17 Mar 2022 Last revised: 7 Jul 2023

See all articles by Toni Ahnert

Toni Ahnert

European Central Bank, Financial Research Division; Centre for Economic Policy Research (CEPR)

Michael Brolley

Wilfrid Laurier University - Lazaridis School of Business and Economics

David A. Cimon

Bank of Canada

Ryan Riordan

Queen's University - Smith School of Business; Ludwig-Maximilians-University Munich, Faculty of Business Administration (Munich School of Management)

Multiple version iconThere are 2 versions of this paper

Date Written: July 6, 2023

Abstract

We develop a model in which firms invest in cybersecurity to protect themselves and their clients from cyber attacks. Since security investment is unobservable, firms signal their investment to attract clients. We derive testable implications for the probability of a successful cyber attack, firm security investment, and the intensity and modality of cyber attacks. To improve efficiency, a regulator can impose a minimum level of security investment or legislate consumer protection that induces firms to invest the constrained-efficient amount in cyber security. Overall, our results support regulatory efforts to increase transparency around cyber security.

Keywords: Cyber security, financial markets, platforms, ransomware, principal-agent

JEL Classification: G10, G28

Suggested Citation

Ahnert, Toni and Brolley, Michael and Cimon, David A. and Riordan, Ryan, Cyber Risk and Security Investment (July 6, 2023). Available at SSRN: https://ssrn.com/abstract=4057505 or http://dx.doi.org/10.2139/ssrn.4057505

Toni Ahnert

European Central Bank, Financial Research Division ( email )

ECB Tower
Sonnemannstraße 20
Frankfurt am Main

HOME PAGE: http://toniahnert.com

Centre for Economic Policy Research (CEPR)

London
United Kingdom

Michael Brolley (Contact Author)

Wilfrid Laurier University - Lazaridis School of Business and Economics ( email )

Lazaridis Hall, 4071
75 University Avenue
Waterloo, Ontario N2L 3C5
Canada

HOME PAGE: http://www.mikerostructure.com

David A. Cimon

Bank of Canada ( email )

234 Wellington Street
Ottawa, Ontario K1A 0G9
Canada

HOME PAGE: http://www.davidcimon.ca

Ryan Riordan

Queen's University - Smith School of Business ( email )

Smith School of Business, Queen's University
143 Union Street
Kingston, Ontario K7L 3N6
Canada

Ludwig-Maximilians-University Munich, Faculty of Business Administration (Munich School of Management) ( email )

Schackstr. 4
Munich, 80539
Germany

PDF iconDownload This Paper
Open PDF in Browser

Do you have negative results from your research you’d like to share?

Submit Negative Results

Paper statistics

Downloads
247
Abstract Views
981
Rank
213,534
3 Citations
14 References
PlumX Metrics

Related eJournals