Applying Antifragility in Design Principles for a Cyber Resilience Maturity Model

Authors

Edzo A. Botjes
Open University of the Netherlands image/svg+xml
Tim Huygh
Open University of the Netherlands, Faculty of Science
https://orcid.org/0000-0003-4564-7994
Laury Bollen
Open University of the Netherlands image/svg+xml
Remko W. Helms
Open University of the Netherlands image/svg+xml
DOI: https://doi.org/10.18690/um.fov.4.2026.24

Synopsis

In an increasingly hyperconnected world rising uncertainty threatens both business continuity and society, prompting new regulatory responses from the EU and the US. Traditional, deterministic approaches to cyber resilience which focus merely on returning to a ‘status quo’ state after a disruption are no longer sufficient. Instead, organizations must evolve toward antifragility: the ability to thrive and exploit opportunities emerging from chaos. Drawing on an iterative design science research methodology this study proposes a theoretically grounded framework consisting of two design goals and twelve design principles to help organizations achieve antifragility within a cyber resilience context and guide the development of future cyber resilience maturity models.

Author Biographies

Edzo A. Botjes, Open University of the Netherlands

Edzo A. Botjes MSc is a PhD candidate in cyber resilience at the Open Universiteit, the Netherlands. His research interests are on how to improve business continuity and focuses on the overlap between risk management, cyber security, enterprise architecture, enterprise governance, resilience, and is specialised in antifragility. He is supervising several MSc students at the Antwerp Management School, and is an external teacher for the MSc course Enterprise Architecture at the University of Applied Sciences Utrecht. His research activities resulted in (cited) publications.

Heerlen, the Netherlands. E-mail: edzo.botjes@ou.nl

Tim Huygh, Open University of the Netherlands, Faculty of Science

Dr. Tim Huygh is assistant professor at the department of information science at the faculty of science of the Open Universiteit, the Netherlands. He is also a visiting professor at the Antwerp Management School. He received his PhD in 2019 on IT governance from the University of Antwerp. His research interests include the governance and (strategic) management of information and technology, information security governance, and cyber resilience. His research has been published in SCI-indexed journals like Information Systems Journal (ISJ) and Decision Support Systems (DSS), and various conference proceedings including the International Conference on Information Systems (ICIS) and the Hawaii International Conference on System Sciences (HICSS). He also co-authored three books on the topic of IT governance (published by Springer). Since 2020, he is co-chairing the minitrack “IT governance and its mechanisms” at HICSS.

Limburg, the Netherlands. E-mail: tim.huygh@ou.nl

Laury Bollen, Open University of the Netherlands

Dr. Laury Bollen is an associate professor of Information Management at the Open Universiteit, the Netherlands. He holds a PhD in Business Economics from Maastricht University. His research interest focuses on IT Governance, Information Security Governance and Platform Governance.


His research activities have resulted in publications in a broad range of international academic journals including Information & Management, the Journal of Information Systems, Information Systems Management, the Journal of Cleaner Production, the European Accounting Review, and the Journal of Business Ethics.

Heerlen, the Netherlands. E-mail: laury.bollen@ou.nl

Remko W. Helms, Open University of the Netherlands

Prof.dr.ir. Remko Helms is a professor in Business Analytics at Open Universiteit (The Netherlands) in the Information Systems group. His teaching and research interests are mainly focused on how organizations realize value from exploring and exploiting data, including topics such as data analytics processes, data analytics strategy, data governance and analytics governance. He is supervising several Phd students and groups of master students on these topics. His work appeared in different Information Systems and Knowledge Management conferences as well as journals. He is a member of Association for Information Systems (AIS).

Heerlen, the Netherlands. E-mail: remko.helms@ou.nl

Volume

39th Bled eConference: Co-Creating Human-Centred and Responsible Digital Futures; Conference Proceedings

Pages

387-406

Published

June 5, 2026

Series

Bled eConference

Categories

Copyright (c) 2026 University of Maribor, University of Maribor Press

License

Creative Commons License

This work is licensed under a Creative Commons Attribution 4.0 International License.

How to Cite

Botjes, E. A., Huygh, T., Bollen, L., & Helms, R. W. (2026). Applying Antifragility in Design Principles for a Cyber Resilience Maturity Model. In D. Vidmar, A. Pucihar, M. Kljajić Borštnar, R. W. H. Bons, M. Glowatz, & H.-D. Zimmermann (Eds.), & (Ed.), 39th Bled eConference: Co-Creating Human-Centred and Responsible Digital Futures; Conference Proceedings (Vols. 39., pp. 387-406). University of Maribor Press. https://doi.org/10.18690/um.fov.4.2026.24