The critical success factors for Security Education, Training and Awareness (SETA) program effectiveness: a lifecycle model

Alyami, Areej; Sammon, David; Neville, Karen; Mahony, Carolanne

doi:10.1108/itp-07-2022-0515

Cited by 6 publications

(2 citation statements)

References 83 publications

(169 reference statements)

Supporting

Mentioning

Contrasting

Order By: Relevance

“…To protect their information systems and assets from security risks, organisations employ a variety of tactics. Nonetheless, many experts advise implementing a Security Education, Training, and Awareness (SETA) programme as part of the organisation's overall IS/cyber security strategy as it is one of the most well-known tactics for reducing IS threats and safeguarding information assets (Alyami et al 2023).…”

Section: Awareness and Trainingmentioning

confidence: 99%

Cloud leakage in higher education in South Africa: A case of University of Technology

Ntloedibe,

Foko,

Segooa

2024

S. Afr. j. inf. manag.

View full text Add to dashboard Cite

Background: Users with knowledge of an organisation can pose risks to Cloud Computing, including current and past employees and external stakeholders with access to the organisation’s cloud. These insiders may engage in intentional or unintentional disruptive behaviors, causing significant harm to the organisation. A study focused on insider threats in South African higher education examined the tactics used by cybersecurity leaders to enforce cybersecurity policies.Objectives: The goal of this study was to develop a comprehensive insider mitigation framework for cloud leakage in a South African University.Method: The study employed qualitative methodologies and a case study approach. Open-ended interviews were conducted to collect data from the participants. The collected data was coded and analysed using ATLAS.ti 22.Results: The study’s findings revealed that some of the major sources of cloud leakage are a lack of effective training, ineffective information security (IS) policy regulation, and the implementation of information security awareness workshops that provided advice on how information security should be managed in the university.Conclusion: Insider threats pose a serious risk to organisations. To mitigate this threat, it is crucial for organisations to establish strong security policies and closely monitor employee activities. By conducting a thorough assessment of insider threats, organisations can enhance their understanding of this dynamic threat and strengthen their defenses.Contribution: Although every employee is ultimately responsible for an organisation’s security, the most effective IS programmes demonstrate strong top-level leadership by setting a ‘tone at the top’ and promoting the benefits of IS through careful policy and guidance.

show abstract

Section: Awareness and Trainingmentioning

confidence: 99%

Cloud leakage in higher education in South Africa: A case of University of Technology

Ntloedibe,

Foko,

Segooa

2024

S. Afr. j. inf. manag.

View full text Add to dashboard Cite

show abstract

“…The importance of cyber security awareness arises from the enormous growth of cybercrime, where cyber attacks pose financial risks and disruption to businesses and individuals, recognizing the human factor as a significant vulnerability, businesses must address potential employee errors and knowledge gaps that can expose organizations to cyber threats, regularly promoting a culture of conversation and awareness through end-user security awareness training ensures that employees stay informed about the steps necessary to secure personal and business information [27].…”

Section: Educational Programs and Skill Developmentmentioning

confidence: 99%

Enhancing awareness of cyber crime: a crucial element in confronting the challenges of hybrid warfare In Indonesia

Azzani,

Adi Purwantoro,

Zakky Almubarok

2024

Defense and Security Studies

View full text Add to dashboard Cite

The Cyber Defense Center, abbreviated as Pushansiber, is an institution responsible for carrying out the duties and functions of the Defense Strategic Installation Agency. Pushansiber has an important role in implementing governance, cooperation, operations, and ensuring cyber defense security. However, this year there has been an increase in problems related to cyber attacks, such as phishing, malware, ransomware, spam. These cyber attacks are included in the concept of hybrid warfare which is believed to be a form of conflict that involves the utilization of various elements, one of which is cyber attacks, military, political, economic, and information aspects. This causes conflict situations to be complicated and demands a comprehensive approach in terms of defense and handling, with digital literacy and cybersecurity awareness which has an important role in defense management, the need for awareness and training, simulation, and certification to strengthen cybercrime awareness in every organization. The success of other countries that have established specialized cybersecurity teams and invested in advanced technology can serve as an example for Indonesia. For Indonesia, the cooperation between National Cyber and Crypto Agency (BSSN) and the Ministry of Defense in strengthening cybersecurity capabilities is an important step to safeguard infrastructure, protect sensitive data, and reduce potential disruptions from malicious cyber activities with the aim of strengthening cybersecurity capabilities.

show abstract

Harnessing the Right Talent for SETA Programs: Cybersecurity Roles and Competencies that Make a Difference

Charalambous,

Stavrou

2024

IFIP Advances in Information and Communication Technology

View full text Add to dashboard Cite

The critical success factors for Security Education, Training and Awareness (SETA) program effectiveness: a lifecycle model

Cited by 6 publications

References 83 publications

Cloud leakage in higher education in South Africa: A case of University of Technology

Cloud leakage in higher education in South Africa: A case of University of Technology

Enhancing awareness of cyber crime: a crucial element in confronting the challenges of hybrid warfare In Indonesia

Harnessing the Right Talent for SETA Programs: Cybersecurity Roles and Competencies that Make a Difference

Contact Info

Product

Resources

About