Managing Cybersecurity and Other Fraud Risks in Small and Medium Enterprises — A Framework to Build a Fraud Management Program in Times of Digitalization

Michaela Trierweiler; Barbara Krumay

doi:10.1007/978-3-031-80122-8_16

Managing Cybersecurity and Other Fraud Risks in Small and Medium Enterprises — A Framework to Build a Fraud Management Program in Times of Digitalization

Michaela Trierweiler^*
, Barbara Krumay

^*Corresponding author for this work

Institute of Business Informatics - Information Engineering

Research output: Chapter in Book/Report/Conference proceeding › Conference proceedings › peer-review

Abstract

Fraud, particularly cybercrime, is an emerging worldwide risk that targets
not only large but also small and medium enterprises (SME). SMEs are especially
vulnerable because they often have limited resources in terms of money, staff, and
IT knowledge. Because of the role SMEs play in the European economy, reducing
their vulnerability has gained more importance. Therefore, this study considers the
question of how to minimize fraud in SME-related digital and socio-technical work
environments. Based on a design science research approach, we developed a fraud
management framework to allow SMEs to identify individual fraud risks and establish
an individual fraud management program based on the framework at hand. To be
adaptable to different industries and sizes of SMEs, we propose a modular concept
of documents and workshop material that includes occupational and cyber-fraud
cases because previous fraud management concepts often handled only one of them.

Original language	English
Title of host publication	Solutions and Technologies for Responsible Digitalization
Subtitle of host publication	Proceedings of the 18th International Conference on Wirtschaftsinformatik, Paderborn, Germany, 2023, Vol. 2
Editors	Daniel Beverungen, Christiane Lehrer, Matthias Trier
Publisher	Springer Nature Switzerland
Pages	253-271
Number of pages	19
Edition	1
ISBN (Electronic)	978-3-031-80122-8
ISBN (Print)	978-3-031-80121-1
DOIs	https://doi.org/10.1007/978-3-031-80122-8_16
Publication status	Published - 2025

Publication series

Name	Lecture Notes in Information Systems and Organisation
Volume	75

Fields of science

502050 Business informatics
502058 Digital transformation
509026 Digitalisation research
102016 IT security
502016 SME-research

JKU Focus areas

Digital Transformation

UN SDGs

This output contributes to the following UN Sustainable Development Goals (SDGs)

Access to Document

10.1007/978-3-031-80122-8_16

Cite this

Trierweiler, M., & Krumay, B. (2025). Managing Cybersecurity and Other Fraud Risks in Small and Medium Enterprises — A Framework to Build a Fraud Management Program in Times of Digitalization. In D. Beverungen, C. Lehrer, & M. Trier (Eds.), Solutions and Technologies for Responsible Digitalization: Proceedings of the 18th International Conference on Wirtschaftsinformatik, Paderborn, Germany, 2023, Vol. 2 (1 ed., pp. 253-271). (Lecture Notes in Information Systems and Organisation; Vol. 75). Springer Nature Switzerland. https://doi.org/10.1007/978-3-031-80122-8_16

Trierweiler, Michaela ; Krumay, Barbara. / Managing Cybersecurity and Other Fraud Risks in Small and Medium Enterprises — A Framework to Build a Fraud Management Program in Times of Digitalization. Solutions and Technologies for Responsible Digitalization: Proceedings of the 18th International Conference on Wirtschaftsinformatik, Paderborn, Germany, 2023, Vol. 2. editor / Daniel Beverungen ; Christiane Lehrer ; Matthias Trier. 1. ed. Springer Nature Switzerland, 2025. pp. 253-271 (Lecture Notes in Information Systems and Organisation).

@inproceedings{996e0b3339fa4e69bbac1595c4578357,

title = "Managing Cybersecurity and Other Fraud Risks in Small and Medium Enterprises — A Framework to Build a Fraud Management Program in Times of Digitalization",

abstract = "Fraud, particularly cybercrime, is an emerging worldwide risk that targets not only large but also small and medium enterprises (SME). SMEs are especially vulnerable because they often have limited resources in terms of money, staff, and IT knowledge. Because of the role SMEs play in the European economy, reducing their vulnerability has gained more importance. Therefore, this study considers the question of how to minimize fraud in SME-related digital and socio-technical work environments. Based on a design science research approach, we developed a fraud management framework to allow SMEs to identify individual fraud risks and establish an individual fraud management program based on the framework at hand. To be adaptable to different industries and sizes of SMEs, we propose a modular concept of documents and workshop material that includes occupational and cyber-fraud cases because previous fraud management concepts often handled only one of them.",

author = "Michaela Trierweiler and Barbara Krumay",

year = "2025",

doi = "10.1007/978-3-031-80122-8\_16",

language = "English",

isbn = "978-3-031-80121-1",

series = "Lecture Notes in Information Systems and Organisation",

publisher = "Springer Nature Switzerland",

pages = "253--271",

editor = "Daniel Beverungen and Christiane Lehrer and Matthias Trier",

booktitle = "Solutions and Technologies for Responsible Digitalization",

edition = "1",

}

Trierweiler, M & Krumay, B 2025, Managing Cybersecurity and Other Fraud Risks in Small and Medium Enterprises — A Framework to Build a Fraud Management Program in Times of Digitalization. in D Beverungen, C Lehrer & M Trier (eds), Solutions and Technologies for Responsible Digitalization: Proceedings of the 18th International Conference on Wirtschaftsinformatik, Paderborn, Germany, 2023, Vol. 2. 1 edn, Lecture Notes in Information Systems and Organisation, vol. 75, Springer Nature Switzerland, pp. 253-271. https://doi.org/10.1007/978-3-031-80122-8_16

Managing Cybersecurity and Other Fraud Risks in Small and Medium Enterprises — A Framework to Build a Fraud Management Program in Times of Digitalization. / Trierweiler, Michaela ; Krumay, Barbara.
Solutions and Technologies for Responsible Digitalization: Proceedings of the 18th International Conference on Wirtschaftsinformatik, Paderborn, Germany, 2023, Vol. 2. ed. / Daniel Beverungen; Christiane Lehrer; Matthias Trier. 1. ed. Springer Nature Switzerland, 2025. p. 253-271 (Lecture Notes in Information Systems and Organisation; Vol. 75).

Research output: Chapter in Book/Report/Conference proceeding › Conference proceedings › peer-review

TY - GEN

T1 - Managing Cybersecurity and Other Fraud Risks in Small and Medium Enterprises — A Framework to Build a Fraud Management Program in Times of Digitalization

AU - Trierweiler, Michaela

AU - Krumay, Barbara

PY - 2025

Y1 - 2025

N2 - Fraud, particularly cybercrime, is an emerging worldwide risk that targets not only large but also small and medium enterprises (SME). SMEs are especially vulnerable because they often have limited resources in terms of money, staff, and IT knowledge. Because of the role SMEs play in the European economy, reducing their vulnerability has gained more importance. Therefore, this study considers the question of how to minimize fraud in SME-related digital and socio-technical work environments. Based on a design science research approach, we developed a fraud management framework to allow SMEs to identify individual fraud risks and establish an individual fraud management program based on the framework at hand. To be adaptable to different industries and sizes of SMEs, we propose a modular concept of documents and workshop material that includes occupational and cyber-fraud cases because previous fraud management concepts often handled only one of them.

AB - Fraud, particularly cybercrime, is an emerging worldwide risk that targets not only large but also small and medium enterprises (SME). SMEs are especially vulnerable because they often have limited resources in terms of money, staff, and IT knowledge. Because of the role SMEs play in the European economy, reducing their vulnerability has gained more importance. Therefore, this study considers the question of how to minimize fraud in SME-related digital and socio-technical work environments. Based on a design science research approach, we developed a fraud management framework to allow SMEs to identify individual fraud risks and establish an individual fraud management program based on the framework at hand. To be adaptable to different industries and sizes of SMEs, we propose a modular concept of documents and workshop material that includes occupational and cyber-fraud cases because previous fraud management concepts often handled only one of them.

UR - https://www.scopus.com/pages/publications/105002018779

U2 - 10.1007/978-3-031-80122-8_16

DO - 10.1007/978-3-031-80122-8_16

M3 - Conference proceedings

SN - 978-3-031-80121-1

T3 - Lecture Notes in Information Systems and Organisation

SP - 253

EP - 271

BT - Solutions and Technologies for Responsible Digitalization

A2 - Beverungen, Daniel

A2 - Lehrer, Christiane

A2 - Trier, Matthias

PB - Springer Nature Switzerland

ER -

Trierweiler M , Krumay B. Managing Cybersecurity and Other Fraud Risks in Small and Medium Enterprises — A Framework to Build a Fraud Management Program in Times of Digitalization. In Beverungen D, Lehrer C, Trier M, editors, Solutions and Technologies for Responsible Digitalization: Proceedings of the 18th International Conference on Wirtschaftsinformatik, Paderborn, Germany, 2023, Vol. 2. 1 ed. Springer Nature Switzerland. 2025. p. 253-271. (Lecture Notes in Information Systems and Organisation). doi: 10.1007/978-3-031-80122-8_16

Managing Cybersecurity and Other Fraud Risks in Small and Medium Enterprises — A Framework to Build a Fraud Management Program in Times of Digitalization

Abstract

Publication series

Fields of science

JKU Focus areas

UN SDGs

Access to Document

Other files and links

Cite this