The Impact of Cybercrime on the enterprises: A Comparison Between SMEs and Larger Corporations in Catalonia

Identifier:  TFG:9111

Handle: https://hdl.handle.net/20.500.11797/TFG9111

Authors:  Mora Napolitano, María Isabella

Abstract:
This study examines how small and medium-sized enterprises (SMEs) and large corporations in Catalonia address cyberattacks, aiming to identify differences in strategies, vulnerabilities, and impacts from a Business Management perspective. Through a literature review of 25 studies and semi-structured interviews with eight companies and four cybersecurity professionals, the research confirms four hypotheses grounded in theories such as the Resource-Based View (RBV), Organizational Culture Theory, and Technology Acceptance Model (TAM). Findings reveal that large corporations exhibit higher awareness and structured strategies (e.g., proactive protocols and continuous training), while SMEs rely on reactive approaches, external providers, and face resource constraints. SMEs suffer more severe impacts from cyber incidents, whereas large firms mitigate damages through rapid response plans.