OECD Digital Economy Papers

The OECD Directorate for Science, Technology and Innovation (STI) undertakes a wide range of activities to better understand how information and communication technologies (ICTs) contribute to sustainable economic growth and social well-being. The OECD Digital Economy Papers series covers a broad range of ICT-related issues and makes selected studies available to a wider readership. They include policy reports, which are officially declassified by an OECD Committee, and occasional working papers, which are meant to share early knowledge.

English, French

Measuring digital security risk management practices in businesses

This report synthesises an OECD project to develop a framework and a set of statistical indicators that can be used to assess the digital security (cybersecurity) risk management practices of businesses. A survey instrument aligned with the framework was developed and piloted. After a general introduction, the report starts with a brief overview of the state of affairs in the measurement of digital security risk and its management prior to the OECD project. It provides an in-depth explanation of the measurement framework for the assessment of digital security risk management practices in businesses and an analysis of the outcomes of a pilot survey instrument based on the measurement framework, tested with members of the Federation of European Risk Management Associations (FERMA) in 2018. The conclusion of the report provides recommendations for future efforts that build on this project.


This is a required field
Please enter a valid email address
Approval was a Success
Invalid data
An Error Occurred
Approval was partially successful, following selected items could not be processed due to error