Culturally-sensitive Cybersecurity Awareness Program Design for Iranian High-school Students

“…Because cultural aspects play a vital role in the East in general and in AGCs specifically [21], these aspects should be incorporated into the ethics topic for students to gain awareness. This can be applied by teaching students about professional responsibilities and cybersecurity regulations that are applicable at the national level, such as KSA Data Management and Personal Data Protection Standards 7 in Saudi Arabia.…”

“…In an education context, ethical considerations will let students understand how to make decisions about the commercial activity of a software business, such as vendor support, licensing, upgrading, pricing; outsourcing; and updating software releases [7]. Because cultural aspects play a vital role in the East in general and in AGCs specifically [21], these aspects should be incorporated into the ethics topic for students to gain awareness. This can be applied by teaching students about professional responsibilities and cybersecurity regulations that are applicable at the national level, such as KSA Data Management and Personal Data Protection Standards in Saudi Arabia.…”

“…The framework improved students' skills and awareness of source code vulnerabilities, detection tools, and mitigation techniques. Karimnia et al [21] developed an awareness program for 16 to 18-year-old Iranian students using a culturally sensitive model. The findings showed low cyber hygiene knowledge, excessive VPN use, and that lectures were a preferred learning approach.…”

“…Some researchers discussed the integration of software security with other courses [17,37]. Others investigated the impact of teaching software security on the student's level through a MOOC-based course [33] or the effect of culture on cybersecurity training programs [21]. To the best of our knowledge, no study has focused on the topics or contents of software security courses to discover the topics or essentials that should or should not be included in the courses.…”

What topics should or should not be included in software security education—Qualitative content analysis

“…Because cultural aspects play a vital role in the East in general and in AGCs specifically [21], these aspects should be incorporated into the ethics topic for students to gain awareness. This can be applied by teaching students about professional responsibilities and cybersecurity regulations that are applicable at the national level, such as KSA Data Management and Personal Data Protection Standards 7 in Saudi Arabia.…”

“…In an education context, ethical considerations will let students understand how to make decisions about the commercial activity of a software business, such as vendor support, licensing, upgrading, pricing; outsourcing; and updating software releases [7]. Because cultural aspects play a vital role in the East in general and in AGCs specifically [21], these aspects should be incorporated into the ethics topic for students to gain awareness. This can be applied by teaching students about professional responsibilities and cybersecurity regulations that are applicable at the national level, such as KSA Data Management and Personal Data Protection Standards in Saudi Arabia.…”

“…The framework improved students' skills and awareness of source code vulnerabilities, detection tools, and mitigation techniques. Karimnia et al [21] developed an awareness program for 16 to 18-year-old Iranian students using a culturally sensitive model. The findings showed low cyber hygiene knowledge, excessive VPN use, and that lectures were a preferred learning approach.…”

“…Some researchers discussed the integration of software security with other courses [17,37]. Others investigated the impact of teaching software security on the student's level through a MOOC-based course [33] or the effect of culture on cybersecurity training programs [21]. To the best of our knowledge, no study has focused on the topics or contents of software security courses to discover the topics or essentials that should or should not be included in the courses.…”

What topics should or should not be included in software security education—Qualitative content analysis

GPT-Enabled Cybersecurity Training: A Tailored Approach for Effective Awareness

A Systematic Task and Knowledge-Based Process to Tune Cybersecurity Training to User Learning Groups: Application to Email Phishing Attacks