A Taxonomy of Positive Incentives to Motivate Cybersecurity Behaviors
Files
Date
2025-01-07
Authors
Contributor
Advisor
Department
Instructor
Depositor
Speaker
Researcher
Consultant
Interviewer
Narrator
Transcriber
Annotator
Journal Title
Journal ISSN
Volume Title
Publisher
Volume
Number/Issue
Starting Page
4539
Ending Page
Alternative Title
Abstract
Cyberattacks pose a significant risk for organizations. As employees are often the primary target of cyberattacks, they are an organization's last line of defense. Incentives can be used to motivate employees to engage in cybersecurity. However, the lack of a consolidated framework for positive cybersecurity incentives, such as rewards, hinders decision-makers from identifying suitable incentives and adapting them to their organizational needs. This can lead to limited motivational effects, inefficient resource use, and inconsistent outcomes. To address this research gap, we developed a taxonomy of positive cybersecurity incentives from a systematic review of 46 papers and insights from 15 cybersecurity decision-makers. This taxonomy provides a comprehensive knowledge base and structured framework for categorizing and designing cybersecurity incentives, aiming to increase their effectiveness. The 15 cybersecurity decision-makers evaluated the taxonomy and showed very high inter-rater agreement, and we created an interactive version to enhance its applicability.
Description
Keywords
Innovative Behavioral IS Security and Privacy Research, cybersecurity, human behavior, incentives, information systems, literature review
Citation
Extent
10
Format
Geographic Location
Time Period
Related To
Proceedings of the 58th Hawaii International Conference on System Sciences
Related To (URI)
Table of Contents
Rights
Attribution-NonCommercial-NoDerivatives 4.0 International
Rights Holder
Local Contexts
Email libraryada-l@lists.hawaii.edu if you need this content in ADA-compliant format.