Please use this identifier to cite or link to this item:

Analyze Before You Sensitize: Preparation of a Targeted ISA Training

File Size Format  
0646.pdf 978.6 kB Adobe PDF View/Open

Item Summary

Title:Analyze Before You Sensitize: Preparation of a Targeted ISA Training
Authors:Schütz, Andreas
Weber, Kristin
Fertig, Tobias
Keywords:Security and Privacy Aspects of Human-Computer-Interactions
data security
human computer interaction
information security
information security awareness
Date Issued:07 Jan 2020
Abstract:This paper describes a procedure to enable the planning of targeted measures to increase the Information Security Awareness (ISA) of employees of an institution. The procedure is practically applied at a German university. With the help of a comprehensive analysis, which is based on findings of social psychology, necessary topics for ISA measures are identified. In addition, reasons are sought for why employees do not conduct information security. The procedure consists of a qualitative phase with interviews and a quantitative phase with a questionnaire. It turned out that the procedure provided many clues to the design of ISA measures. These include organizational and technical measures that can help employees to ensure information-safe behavior. In addition, it was found that there were deviations between the qualitative and quantitative phases and therefore, both phases are necessary. The paper critically discusses the procedure and also addresses the strengths and weaknesses of the analysis.
Pages/Duration:10 pages
Rights:Attribution-NonCommercial-NoDerivatives 4.0 International
Appears in Collections: Security and Privacy Aspects of Human-Computer-Interactions

Please email if you need this content in ADA-compliant format.

This item is licensed under a Creative Commons License Creative Commons