Personality and Employees’ Information Security Behavior among Generational Cohorts

Warrington, Cartmell; Syed, Javaid; Tappin, Ruth M.

doi:10.5539/cis.v14n1p44

Cited by 6 publications

(11 citation statements)

References 63 publications

(121 reference statements)

Supporting

Mentioning

Contrasting

Order By: Relevance

“…A line of research has investigated individual differences in cyber-security related behaviour in terms of demographic factors, specifically, gender, age, educational qualification, computational skills and experience (Alzubaidi, 2021; Anwar et al , 2017; Ifinedo, 2012; Whitty et al , 2015; Wiley et al , 2020; Yan et al , 2018). Simultaneously, a parallel line of research has shed light on cognitive and psychological antecedents of behaviour such as attitudes, knowledge, internet addiction, impulsivity (Hadlington, 2017; Hadlington and Parsons, 2017; Nunes et al , 2021; Palanisamy and Wu, 2021), personality traits (Aharony et al , 2020; Shropshire et al , 2015; Warrington et al , 2021), perceived cyber-security threats and online self-disclosure behaviour (Bouhnik et al , 2021), moral disengagement (Hadlington et al , 2021), moral intensity (Lankton et al , 2019), work identity and locus of control (Hadlington et al , 2019), self-efficacy and perceived behavioural control (Hu et al , 2012), vicarious mastery experiences and personal responsibility (Shillair et al , 2015).…”

Section: Resultsmentioning

confidence: 99%

Human and contextual factors influencing cyber-security in organizations, and implications for higher education institutions: a systematic review

Al-Nuaimi

2022

GKMC

View full text Add to dashboard Cite

Purpose A research line has emerged that is concerned with investigating human factors in information systems and cyber-security in organizations using various behavioural and socio-cognitive theories. This study aims to explore human and contextual factors influencing cyber security behaviour in organizations while drawing implications for cyber-security in higher education institutions. Design/methodology/approach A systematic literature review has been implemented. The reviewed studies have revealed various human and contextual factors that influence cyber-security behaviour in organizations, notably higher education institutions. Research limitations/implications This review study offers practical implications for constructing and keeping a robust cyber-security organizational culture in higher education institutions for the sustainable development goals of cyber-security training and education. Originality/value The value of the current review arises in that it presents a comprehensive account of human factors affecting cyber-security in organizations, a topic that is rarely investigated in previous related literature. Furthermore, the current review sheds light on cyber-security in higher education from the weakest link perspective. Simultaneously, the study contributes to relevant literature by gaining insight into human factors and socio-technological controls related to cyber-security in higher education institutions.

show abstract

Section: Resultsmentioning

confidence: 99%

Human and contextual factors influencing cyber-security in organizations, and implications for higher education institutions: a systematic review

Al-Nuaimi

2022

GKMC

View full text Add to dashboard Cite

show abstract

“…Cybersecurity behaviors are shaped by various factors beyond gender and age, including technical expertise, training, and social attributes such as personality traits and cultural background. Research utilizing the Big Five personality model demonstrates that personality impacts security practices consistently across different age groups, indicating that traits like openness, conscientiousness, agreeableness, extraversion, and neuroticism in uence individuals similarly, regardless of age [23]. In addition, technical knowledge and training are signi cant factors that mediate gender differences in cybersecurity, particularly in phishing susceptibility.…”

Section: Cybersecurity Behaviors: Gender and Age Differencesmentioning

confidence: 99%

How do Gender and Age Similarities with a Potential Social Engineer Influence One's Trust and Willingness to Take Security Risks?

Abuelezz,

Barhmagi,

Al-Shakhsi

et al. 2024

Preprint

View full text Add to dashboard Cite

This study investigates how age and gender similarity between individuals and potential social engineers affect the individuals’ trust and risk-taking behaviors. We crafted and face validated 16 personas, varying in demographics and visual cues, and inquired whether participants would agree to use each persona's offer to connect to the internet via their personal mobile hotspot, as well as the degree of trust they placed in the persona's intentions. Individuals were informed about the potential risks associated with using another person's mobile hotspot and that the person offering can be, but not necessarily, malicious. Data from 635 participants (322 Arabs and 313 British) were collected through an online survey. Participants were categorized by gender into male and female groups, and by age into two groups: early adulthood (18–35 years) and middle adulthood (36–59 years). Our results showed a correlation between trust and offer acceptance across all participant groups except for British females in middle adulthood. Additionally, participants, regardless of their gender and age groups, exhibited greater trust and acceptance towards personas who were female or older. Arab sample did not indicate a significant gender preference in aged personas; however, the British early adulthood group displayed a significant inclination towards accepting the offer from aged female personas over aged male personas. While demographic similarity between the potential manipulator personas and participants did not significantly impact the participants trust and risk-taking, our study uncovered differences in trust and offer acceptance when both age and gender demographics were considered together, suggesting nuanced effects of demographic matching and mismatching on taking security risks. These findings underscore the importance of incorporating bias awareness and debiasing techniques to reduce high reliance on demographic or cultural stereotypes.

show abstract

“…This field is pivotal for maintaining the confidentiality, integrity, and availability of information, which is essential for the smooth operation of any organization. The literature often uses the terms "information security" and "cybersecurity" interchangeably, a practice we will continue in this study [5,18]. Wilner [19] argues that "information security" more accurately describes the protection of data, a stance supported by the current academic discourse.…”

Section: Literature Review a Information Securitymentioning

confidence: 99%

“…Studies indicate that noncompliance with security measures, ranging from casual neglect to intentional sabotage, is a significant contributor to security breaches [21,22]. The evolving research on technology acceptance and behavior science theories, such as the Big Five Inventory (BFI), underscores the importance of understanding and predicting security behaviors among employees [18,23].…”

Section: B Information Security and Human Behaviormentioning

confidence: 99%

Investigating the Relationship Between Personality Traits and Information Security Awareness

F. Naga,

Amor C. Tinam-isan,

Mae O. Maluya

et al. 2024

IJCDS

View full text Add to dashboard Cite

This study delves into the crucial intersection of personality traits and information security behaviors in an era of increasing technological reliance. Using a quantitative approach, we explore the correlation between the Big Five Personality Traits (BFI) and the Knowledge-Attitude-Behavior (KAB) components related to information security awareness. Our study, which involved 311 undergraduate students chosen through stratified random sampling, uses Spearman correlation analysis and logistic regression modeling to examine correlations between personality traits from the BFI and information security risk status. The findings reveal significant correlations, particularly highlighting the roles of neuroticism (33.33%), lack of direction (16.67%), extraversion (16.67%), and antagonism (16.67%) in increasing susceptibility to security risks. The logistic regression model demonstrates 85.7% accuracy, indicating its effectiveness in correlating personality traits with information security behaviors. The study underscores the importance of considering individual personality profiles in cybersecurity strategies. By understanding the interplay between personality traits and security behaviors, organizations can effectively develop targeted interventions to enhance information security awareness and resilience. These findings provide a nuanced understanding of the psychological factors shaping cybersecurity attitudes and behaviors. Also, these findings have significant implications for crafting targeted cybersecurity awareness programs, suggesting that integrating personality traits into these initiatives could promote cyber-secure behavior more effectively. This research adds valuable insights to information security, emphasizing the need for a more personalized approach to awareness strategies and future research to explore this relationship further.

show abstract

Personality and Employees’ Information Security Behavior among Generational Cohorts

Cited by 6 publications

References 63 publications

Human and contextual factors influencing cyber-security in organizations, and implications for higher education institutions: a systematic review

Human and contextual factors influencing cyber-security in organizations, and implications for higher education institutions: a systematic review

How do Gender and Age Similarities with a Potential Social Engineer Influence One's Trust and Willingness to Take Security Risks?

Investigating the Relationship Between Personality Traits and Information Security Awareness

Contact Info

Product

Resources

About