• Journal article

Cybersecurity disclosure: Board commitment and regulatory impact in the UK

Elmarzouky, M., Moussa, T. and Allam, A. 2025. Cybersecurity disclosure: Board commitment and regulatory impact in the UK. The International Journal of Accounting.

TitleCybersecurity disclosure: Board commitment and regulatory impact in the UK
TypeJournal article
AuthorsElmarzouky, M., Moussa, T. and Allam, A.
Abstract

The Research Problem
This study investigates the relationship between board commitment to cybersecurity governance (BCCG) and corporate cybersecurity disclosures (CSD) in the UK. It focuses on how the UK's Network and Information Systems (NIS) 2018 regulation influences this relationship, considering cyber threats’ rising complexity and frequency.

Motivation
With the digital age’s escalating cybersecurity threats, strong cybersecurity governance and transparent disclosure practices have become crucial. The study seeks to understand whether a board's commitment to cybersecurity, particularly in the context of the NIS regulation, affects the extent of a company's CSD.

The Test Hypotheses
This study tests two hypotheses. The first hypothesis posits a positive association between BCCG and the extent of CSD. The second hypothesis contends that the UK's NIS 2018 regulation positively moderates the relationship between board commitment and CSD.

Target Population
This study should be of interest to boards of directors, policymakers, regulators, and various stakeholder groups.

Adopted Methodology
The study employed textual analysis using Python to analyze corporate disclosures, fixed effect regressions, Difference-in-Differences (DID), and Propensity Score Matching analyses.

Analyses
We examined the relationship between BCCG and CSD against the backdrop of the UK's NIS 2018 regulation. We first assessed the extent of CSD in the UK FTSE 350 firms using Python-based textual analysis. Then, we conducted a regression analysis to assess the impact of BCCG on CSD and the moderating effect of the NIS regulation. This was complemented by a DiD analysis to evaluate the changes in CSD before and after the introduction of the NIS regulation.

Findings
We find that BCCG is positively associated with the extent of CSD, and that the NIS regulation positively moderates this relationship. Our evidence suggests that firms with a greater focus on cybersecurity governance at the board level (e.g., directors with IT expertise, the presence of IT committees and cybersecurity policies) demonstrate a higher commitment to managing and reporting cybersecurity risks and solutions. Moreover, using DiD analysis, we find a significant increase in CSD levels among firms subjected to NIS regulation compared to control firms, post-NIS regulation. Overall, our study suggests that the interplay of BCCG and macro-social factors, such as NIS regulation, enhances firms’ sensitivity to institutional and stakeholder pressures, leading them to increase their corporate CSD.

KeywordsCybersecurity disclosure
board commitment
NIS regulation
Python
Textual analysis
UK
JournalThe International Journal of Accounting
ISSN1094-4060
2213-3933
Year2025
PublisherWorld Scientific Publishing
Accepted author manuscript
License
CC BY 4.0
File Access Level
Open (open metadata and files)

Related outputs

Examining the relationship between CEO power and modern slavery disclosures: The moderating role of board gender diversity in UK companies
Allam, A., Moussa, T. and Elmarzouky, M. 2024. Examining the relationship between CEO power and modern slavery disclosures: The moderating role of board gender diversity in UK companies. Business Strategy and The Environment. 33 (8), pp. 8067-8085. https://doi.org/10.1002/bse.3910

National culture and tax evasion: The role of the institutional environment quality
Allam, A., Moussa, T., Abdelhady, M. and Yamen, A. 2023. National culture and tax evasion: The role of the institutional environment quality. Journal of International Accounting, Auditing and Taxation. 52 100559. https://doi.org/10.1016/j.intaccaudtax.2023.100559

Islamic Banks’ Sharia Compliance Disclosure: An International Evidence
Benamraoui, A., Moussa, T. and Hussien, M. 2023. Islamic Banks’ Sharia Compliance Disclosure: An International Evidence. Accounting Research Journal. 36 (4/5), pp. 327-348. https://doi.org/10.1108/ARJ-07-2022-0157

An examination of UK companies' modern slavery disclosure practices: Does board gender diversity matter?
Moussa, T., Allam, A. and Elmarzouky, M. 2023. An examination of UK companies' modern slavery disclosure practices: Does board gender diversity matter? Business Strategy and The Environment. 32 (8), pp. 5382-5402. https://doi.org/10.1002/bse.3426

The effect of political connections on firms' auditor choice decisions and audit opinions: evidence from Egypt
Tantawy, S. and Moussa, T. 2023. The effect of political connections on firms' auditor choice decisions and audit opinions: evidence from Egypt. Asian Review of Accounting. 31 (3), pp. 414-436. https://doi.org/10.1108/ara-07-2022-0161

Global Modern Slavery and Sustainable Development Goals: Does Institutional Environment Quality Matter?
Moussa, T., Allam, A. and Elmarzouky, M. 2022. Global Modern Slavery and Sustainable Development Goals: Does Institutional Environment Quality Matter? Business Strategy and The Environment. 31 (5), pp. 2230-2244. https://doi.org/10.1002/bse.3018

An Empirical Investigation of U.K. Environmental Targets Disclosure: The Role of Environmental Governance and Performance
Moussa, T., Kotb, A. and Helfaya, A. 2021. An Empirical Investigation of U.K. Environmental Targets Disclosure: The Role of Environmental Governance and Performance. European Accounting Review. 31 (4), pp. 937-971. https://doi.org/10.1080/09638180.2021.1890173

Can board environmental orientation improve U.S. firms' carbon performance? The mediating role of carbon strategy
Moussa, T., Allam, A., Elbanna, S. and Bani-Mustafa, A. 2020. Can board environmental orientation improve U.S. firms' carbon performance? The mediating role of carbon strategy. Business Strategy and The Environment. 29 (1), pp. 72-86. https://doi.org/10.1002/bse.2351

Do Board's Corporate Social Responsibility Strategy and Orientation Influence Environmental Sustainability Disclosure? UK Evidence
Helfaya, A. and Moussa, T. 2017. Do Board's Corporate Social Responsibility Strategy and Orientation Influence Environmental Sustainability Disclosure? UK Evidence. Business Strategy and The Environment. 26 (8), pp. 1061-1077 BSE-16-0160. https://doi.org/10.1002/bse.1960

Permalink - https://westminsterresearch.westminster.ac.uk/item/x0115/cybersecurity-disclosure-board-commitment-and-regulatory-impact-in-the-uk


File access - Request a copy

Restricted files

Accepted author manuscript

Under embargo until 22 Apr 2026

Share this

Tweet
Email

Usage statistics

5 total views
0 total downloads
These values cover views and downloads from WestminsterResearch and are for the period from September 2nd 2018, when this repository was created.