Establishing a personalized information security culture
Good security cannot be achieved through technical means alone and a solid understanding of the issues and how to protect one’s self is required from users. Whilst many initiatives, programs and strategies have been proposed to improve the level of information security awareness, most have been dire...
| Main Authors: | , , |
|---|---|
| Format: | Article |
| Language: | English |
| Published: |
IGI Global
2011
|
| Subjects: | |
| Online Access: | http://irep.iium.edu.my/21830/ http://irep.iium.edu.my/21830/ http://irep.iium.edu.my/21830/1/Establishing_A_Personalized_Information_Security_Culture.pdf |
| id |
iium-21830 |
|---|---|
| recordtype |
eprints |
| spelling |
iium-218302012-03-06T08:29:40Z http://irep.iium.edu.my/21830/ Establishing a personalized information security culture Talib, Shuhaili Clarke, Nathan L. Furnell, Steven M. T Technology (General) Good security cannot be achieved through technical means alone and a solid understanding of the issues and how to protect one’s self is required from users. Whilst many initiatives, programs and strategies have been proposed to improve the level of information security awareness, most have been directed at organizations. Given people’s use of technology is primarily focused between the workplace and home; this paper seeks to understand the knowledge and practice relationship between these environments. Through a developed survey, it was identified that the majority of the learning about information security occurred in the workplace, where clear motivations, such as legislation and regulation, existed. Results found that users were more than willing to engage with such awareness raising initiatives. From a comparison of practice between work and home environments, it was found that this knowledge and practice obtained at the workplace was transferred to the home environment. Given this positive transferability of knowledge and the willingness to learn about how to remain secure, an opportunity exists to move away from specific organizational awareness programs and to move towards awareness raising strategies that will develop an all-round individual security culture for users independent of the environment they are operating in. IGI Global 2011 Article PeerReviewed application/pdf en http://irep.iium.edu.my/21830/1/Establishing_A_Personalized_Information_Security_Culture.pdf Talib, Shuhaili and Clarke, Nathan L. and Furnell, Steven M. (2011) Establishing a personalized information security culture. International Journal of Mobile Computing and Multimedia Communications (IJMCMC), 3 (1). pp. 63-79. ISSN 1937-9412 http://www.igi-global.com/article/establishing-personalized-information-security-culture/51662 |
| repository_type |
Digital Repository |
| institution_category |
Local University |
| institution |
International Islamic University Malaysia |
| building |
IIUM Repository |
| collection |
Online Access |
| language |
English |
| topic |
T Technology (General) |
| spellingShingle |
T Technology (General) Talib, Shuhaili Clarke, Nathan L. Furnell, Steven M. Establishing a personalized information security culture |
| description |
Good security cannot be achieved through technical means alone and a solid understanding of the issues and how to protect one’s self is required from users. Whilst many initiatives, programs and strategies have been proposed to improve the level of information security awareness, most have been directed at organizations. Given people’s use of technology is primarily focused between the workplace and home; this paper seeks to understand the knowledge and practice relationship between these environments. Through a developed survey, it was identified that the majority of the learning about information security occurred in the workplace, where clear motivations, such as legislation and regulation, existed. Results found that users were more than willing to engage with such awareness raising initiatives. From a comparison of practice between work and home environments, it was found that this knowledge and practice obtained at the workplace was transferred to the home environment. Given this positive transferability of knowledge and the willingness to learn about how to remain secure, an opportunity exists to move away from specific organizational awareness programs and to move towards awareness raising strategies that will develop an all-round individual security culture for users independent of the environment they are operating in. |
| format |
Article |
| author |
Talib, Shuhaili Clarke, Nathan L. Furnell, Steven M. |
| author_facet |
Talib, Shuhaili Clarke, Nathan L. Furnell, Steven M. |
| author_sort |
Talib, Shuhaili |
| title |
Establishing a personalized information security culture |
| title_short |
Establishing a personalized information security culture |
| title_full |
Establishing a personalized information security culture |
| title_fullStr |
Establishing a personalized information security culture |
| title_full_unstemmed |
Establishing a personalized information security culture |
| title_sort |
establishing a personalized information security culture |
| publisher |
IGI Global |
| publishDate |
2011 |
| url |
http://irep.iium.edu.my/21830/ http://irep.iium.edu.my/21830/ http://irep.iium.edu.my/21830/1/Establishing_A_Personalized_Information_Security_Culture.pdf |
| first_indexed |
2023-09-18T20:33:18Z |
| last_indexed |
2023-09-18T20:33:18Z |
| _version_ |
1777408880404332544 |