Impacts of Cybersecurity Practices on Cyberattack Damage and Protection Among Small and Medium Enterprises in Thailand

Thamrongthanakit, Thanintorn

January 2023

Small and medium enterprises (SMEs) are a significant factor that drives the global economy, especially in developing countries such as Thailand, where SMEs contribute more than one-third of the Thai GDP. With digital transformation allowing businesses to access new technologies easily, most SMEs have shifted from traditional businesses to digital businesses. However, adopting technologies without any protections could make SMEs become a target of cyberattacks. This study, therefore, aims to explore cyber securities that are used to protect against cyberattacks in Thai SMEs and also the challenges of implementing cybersecurity frameworks and controls in SMEs. The research questions of this study are “How do SMEs in Thailand protect their organization from cyberattacks?” and “What challenges do SMEs in Thailand face during implementing cybersecurity frameworks or controls?” A mixed method combining surveys for quantitative data and interviews for qualitative data was used in this study. The online survey questionnaires were used to find out the overview of cybersecurity in SMEs, followed by the semi-structured interview to investigate the challenges of implementing cybersecurity in SMEs. There were 75 SMEs participating in the survey along with three respondents working for SMEs and an IT consultant for SMEs participating in in-depth interviews. The quantitative data were analyzed with descriptive statistics, while the thematic analysis was used to analyze the quantitative data. The findings indicate that SMEs in Thailand implement some cybersecurity controls to protect their organization instead of complying with the cybersecurity standards or frameworks, such as ISO2700X series, NIST, and PCI DSS. However, SMEs are also concerned about the laws, including Thailand’s PDPA, Computer Crime Act, and Personal Information Act, to which they have to comply. In addition, the biggest challenge of implementing cybersecurity frameworks and controls in SMEs is lack of financial resources, as cybersecurity frameworks and controls require a lot of budget, tools, and also experts or consultants to implement.

SMEs in Thailand

Cybersecurity Frameworks

Cybersecurity Contols

Computer Sciences

Datavetenskap (datalogi)

The role of experiential foreign market knowledge and exporter-importer relationship quality on export performance satisfaction : empirical evidence from SMEs in Thailand

Jatuphatwarodom, Akarawat

January 2017

Export performance has an important role for firm survival, profitability and growth. Given these benefits and the challenges that firms may face when exporting, scholars have dedicated considerable efforts to understand the factors that enable export success. The current study investigates the role of experiential foreign market knowledge and exporter-importer (EI) relationship quality for export performance. A conceptual model involving the relationship between the role of experiential foreign market knowledge, E-I relationship quality and export performance satisfaction is developed and empirically tested using data from 264 Thai exporting small and medium-sized enterprises (SMEs). Findings suggest SME managers' knowledge of foreign customers, culture and political environment have a positive influence on E-I relationship quality and satisfaction with export performance. Drawing upon the relational exchange theory, goodwill trust was found to be the most significant aspect that builds long-term E-I relationship quality. Secondly, the findings show that calculative approach (e.g. commitment based on cost and benefits) is a mainstream type of commitment between exporters and importers. However, a personalised tie between the exchange partners has a positive influence on commitment, resulting in the affective commitment to E-I relationship. Thirdly, in a collaborative business partnership, decision-makers emphasise information exchange and coordinating actions for taking strategic decisions, which are informed by the feedback recived in their collaboration. In addition, the study finds that political instability negatively moderates the link of competence trust and information exchange on export performance satisfaction. Theoretical, managerial and policy implications of these findings are discussed and areas for future research are proposed.