CYBERSECURITY AS A STRATEGIC RESOURCE FOR BANKS’ MARKET POSITIONING IN THE DIGITAL ECONOMY
DOI:
https://doi.org/10.32782/ecovis/2025-4-9Keywords:
bank, market positioning, cybersecurity, digital economy, strategic management, cyber risks, customer trust, digital operational resilienceAbstract
The article substantiates the interpretation of cybersecurity as a strategic resource that directly influences banks’ market positioning in the digital economy. It shows that as banking services migrate to digital and remote channels and cyberthreats intensify, cyber resilience extends beyond operational protection to strategic governance, shaping trust, reputational and moral capital. The study synthesizes recent scholarship on cybersecurity in the banking sectors of Ukraine and other countries and analyses contemporary EU regulatory approaches to digital operational resilience and cyber risk governance. The findings confirm that the quality of cyber risk management is becoming a material driver of competitive differentiation: mature governance, disciplined risk assessment, resilient architectures, transparent incident handling, and controlled third-party dependencies increase perceived reliability and support customer retention. In wartime conditions the strategic value of cyber resilience increases further because attacks target payment infrastructure, customer data, and service continuity; therefore, resilience must be treated as a strategic capability and a reputational safeguard. Cybersecurity is conceptualized as an integrated strategic resource combining technological controls, organizational processes, regulatory alignment and behavioural factors, which collectively determine a bank’s ability to sustain secure operations and maintain stable market positioning under high turbulence. The author proposes a logic for embedding cyber resilience indicators into the bank’s Balanced Scorecard by linking measurable cyber metrics to strategic objectives across customer, internal process, learning and growth, and financial perspectives. The paper argues for using indicator clusters such as governance maturity, vulnerability management speed, detection and response performance (e.g., time to detect and time to recover), continuity of critical services, third-party risk control, and staff awareness. Practical implications include prioritizing resilience investments, strengthening accountability and training, improving disclosure and communication to protect trust, and aligning cyber strategy with digital transformation goals. Directions for further research are outlined for developing sector-specific indicator systems and empirically evaluating how cyber resilience affects positioning in different banking models.
References
Хомишин І., Гавц О. Кібербезпека банківської сфери України: поняття, проблеми та досвід зарубіжних держав. Вісник Національного університету «Львівська політехніка». Серія: Юридичні науки. 2023. Т. 10, № 4(40). С. 170–178. DOI: https://doi.org/10.23939/law2023.40.170
Ситник Н. С., Половчак І. Р. Цифровізація та кібербезпека у забезпеченні фінансової безпеки банків в умовах війни. Галицький економічний вісник. 2024. Т. 89, № 4. С. 70–81. DOI: https://doi.org/10.33108/galicianvisnyk_tntu2024.04.070
Elsayed D. H., Ismail T. H., Ahmed E. A. The impact of cybersecurity disclosure on banks’ performance: the moderating role of corporate governance in the MENA region. Future Business Journal. 2024. Vol. 10, Is. 1. P. 1–15. DOI: https://doi.org/10.1186/s43093-024-00402-9
Gaviyau W., Godi J. Banking Sector Transformation: Disruptions, Challenges and Opportunities. FinTech. 2025. Vol. 4, Is. 3. Art. 48. DOI: https://doi.org/10.3390/fintech4030048
AlHares A., Zaerinajad Z., Al Bahr M. Customer awareness and cyber security in the Organisation for Economic Co-operation and Development countries. Corporate & Business Strategy Review. 2024. Vol. 5, Is. 1 (Special Issue). P. 371–381. DOI: https://doi.org/10.22495/cbsrv5i1siart11
Regulation (EU) 2022/2554 of the European Parliament and of the Council of 14 December 2022 on digital operational resilience for the financial sector and amending Regulations (EC) No 1060/2009, (EU) No 648/2012, (EU) No 600/2014, (EU) No 909/2014 and (EU) 2016/1011. Official Journal of the European Union. 2022. L 333. P. 1–76. https://eur-lex.europa.eu/eli/reg/2022/2554/oj
Дорогий Я. Ю., Цуркан В. В., Бердиченко І. О. Захист критичної інфраструктури банківської сфери України. Цифрові технології у відновленні економіки та інфраструктури України: матеріали І міжнар. наук.-практ. конф., 13 листоп. 2024 р., Київ. Київ: Державне агентство відновлення та розвитку інфраструктури України, 2024. С. 96–106. DOI https://doi.org/10.5281/zenodo.14704594
Khomyshyn, I., & Havts, O. (2023). Kiberbezpeka bankivskoi sfery Ukrainy: poniattia, problemy ta dosvid zarubizhnykh derzhav [Cybersecurity of Ukraine’s banking sector: concept, problems and foreign experience]. Visnyk Natsionalnoho universytetu “Lvivska politekhnika”. Seriia: Yurydychni nauky, Vol. 10, No. 4(40), pp. 170-178. DOI: https://doi.org/10.23939/law2023.40.170
Sytnyk, N. S., & Polovchak, I. R. (2024). Tsyfrovizatsiia ta kiberbezpeka u zabezpechenni finansovoi bezpeky bankiv v umovakh viiny [Digitalization and cybersecurity in ensuring banks’ financial security under war]. Halytskyi ekonomichnyi visnyk, Vol. 89, No. 4, pp. 70-81. DOI: https://doi.org/10.33108/galicianvisnyk_tntu2024.04.070
Elsayed, D. H., Ismail, T. H., & Ahmed, E. A. (2024). The impact of cybersecurity disclosure on banks’ performance: The moderating role of corporate governance in the MENA region. Future Business Journal, Vol. 10, Is. 1, pp. 1-15. DOI: https://doi.org/10.1186/s43093-024-00402-9
Gaviyau, W., & Godi, J. (2025). Banking sector transformation: Disruptions, challenges and opportunities. FinTech, Vol. 4, Is. 3, Art. 48. DOI: https://doi.org/10.3390/fintech4030048
AlHares, A., Zaerinajad, Z., & Al Bahr, M. (2024). Customer awareness and cyber security in the Organisation for Economic Co-operation and Development countries. Corporate & Business Strategy Review, Vol. 5, Is. 1 (Special Issue), pp. 371-381. DOI: https://doi.org/10.22495/cbsrv5i1siart11
European Parliament and Council. (2022). Regulation (EU) 2022/2554 of the European Parliament and of the Council of 14 December 2022 on digital operational resilience for the financial sector and amending Regulations (EC) No 1060/2009, (EU) No 648/2012, (EU) No 600/2014, (EU) No 909/2014 and (EU) 2016/1011. Official Journal of the European Union, L 333, pp. 1-76. Available at: https://eur-lex.europa.eu/eli/reg/2022/2554/oj
Dorohyi, Ya. Yu., Tsurkan, V. V., & Berdychenko, I. O. (2024). Zakhyst krytychnoi infrastruktury bankivskoi sfery Ukrainy [Protection of critical infrastructure of the banking sector of Ukraine]. Tsyfrovi tekhnolohii u vidnovlenni ekonomiky ta infrastruktury Ukrainy: Materialy I mizhnarodnoi naukovo-praktychnoi konferentsii (Kyiv, November 13, 2024) (pp. 96-106). Kyiv: Derzhavne ahentstvo vidnovlennia ta rozvytku infrastruktury Ukrainy. DOI: https://doi.org/10.5281/zenodo.14704594
