A review of the open-source cyber security and organizational design literature suggests that the factors of complexity and rate of change combine to generate uncertainty within the cyber domain. This monograph examines four cyber attack case studies to identify and compare their environmental and contextual factors and to assess the relationship between uncertainty and organizational design. The cyber attack case studies demonstrate the importance of experts in enabling organizations to deal with ill-structured problems. They also suggest that no single organizational design is optimal for dealing with all threats in the cyber domain, because ill-structured problems require diverse expertise to identify and structure them. The hypothesis that complexity and rate of change increase uncertainty about cyber threats was confirmed. The findings suggest that future organizational designs must be able to gain access to experts to hedge against forecasted cyber threats.
展开▼