Unstructured Data for Cybersecurity and Internal Control

Abstract

This paper proposes a research framework for studying the connections--realized and potential--between unstructured data and cybersecurity and internal controls. In the framework, cybersecurity and internal control goals determine the tasks to be conducted. The task influences the types of unstructured data to be accessed and the types of analysis to be done, which in turn influences the outcomes that can be achieved. Patterns in unstructured data are relevant for cybersecurity and internal control, but unstructured data poses unique challenges for its analysis and management. This paper discusses some of these challenges including veracity, structuralizing, bias, and explainability