Feb 5, 2024 | Journal article, Research library
Cybersecurity awareness (CSA) is not just about knowing, but also transforming things learned into practice. It is a continuous process that needs to be adjusted in subsequent iterations to improve its usability as well as sustainability. This is possible only if a...
Feb 5, 2024 | Conference proceedings, Research library
Behavior-change interventions are common in some areas of human-computer interaction, but rare in the domain of cybersecurity. This paper introduces a structured approach to working with organisations in order to develop such behavioral interventions or ‘nudges’. This...
Feb 2, 2024 | Conference proceedings, Research library
Nudging is a promising approach, in terms of influencing people to make advisable choices in a range of domains, including cybersecurity. However, the processes underlying the concept and the nudge’s effectiveness in different contexts, and in the long term, are still...
Feb 2, 2024 | Conference proceedings, Research library
Effective information security education, training and awareness (SETA) is essential for protecting organisational information resources. Whilst most organisations invest significantly in implementing SETA programs, the number of incidents resulting from employee...
Feb 2, 2024 | Conference proceedings, Research library
Cybersecurity cannot be addressed by technology alone; the most intractable aspects are in fact sociotechnical. As a result, the ‘human factor’ has been recognised as being the weakest and most obscure link in creating safe and secure digital environments....
Feb 2, 2024 | Research library, Thesis / Dissertation
This review explores the academic and policy literature in the context of everyday cyber security in organisations. In so doing, it identifies four behavioural sets that influences how people practice cyber security. These are compliance with security policy,...
