The Need for Effective Information Security Awareness

Aloul, Fadi

doi:10.4304/jait.3.3.176-183

Cited by 75 publications

(38 citation statements)

References 6 publications

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…An increase in the number of phishing attempts shows that the target is now the user and cybercriminals seek to exploit their lack of knowledge. While organizations are increasingly advancing their security technologies, very little is invested in increasing safety awareness among general users, consequently causing them to be the weakest link on the organization's system (Aloul, 2012). Social awareness campaigns can be run to inform people of prevalent security issues.…”

Section: Challenges Related To Mobile Learningmentioning

confidence: 99%

Impacts and Satisfaction of Using Smartphones for Learning in a University Context

Toperesu

Belle

Turpin

Kalpa Publications in Computing

View full text Add to dashboard Cite

This research investigates how the business strategy factors for South African organizations either support or impede moving business capabilities to a Cloud Computing (CC) environment. In particular, the research considers larger organizations within the investment services industry. By performing a qualitative study the research investigates the various business and Information Technology (IT) strategies. The various CC options are then explored to draw a correlation between the business strategy factors and CC. It concludes that cloud computing offers no competitive differentiation for South African investment services organisations. For these organisations, their existing business models remains profitable. Business strategy, therefore, has no compelling reason to consider cloud computing. South African investment services organizations align with their business strategies through the service-level method, which cause the IT departments to focus on stability and reliability.

show abstract

Section: Challenges Related To Mobile Learningmentioning

confidence: 99%

Impacts and Satisfaction of Using Smartphones for Learning in a University Context

Toperesu

Belle

Turpin

Kalpa Publications in Computing

View full text Add to dashboard Cite

show abstract

“…IT systems are dependent on employees' behavioral compliance with security requirements [23]. Without information security awareness training and a commitment to compliance, people's intentional and unintentional actions cause adverse consequences that negatively impact organizations [26].…”

Section: Information Security Awarenessmentioning

confidence: 99%

A Perspective on the Intersection of Information Security Policies and IA Awareness, Factoring in End-User Behavior

Muller¹

2020

Annals of Computer Science and Information Systems

View full text Add to dashboard Cite

In 2017 Executive Order 13800 was enacted for all federal entities to use the NIST Cybersecurity Framework to report on FISMA compliance. According to GAO-19-545 report sixteen agencies were identified as failing to successfully implement FISMA regulations rooted in information security policies (ISPs). This paper will introduce the link between information assurance awareness with the prescribed actions and its direct influence on information security policies. While organizations are conscious of the federal rules and regulations, most continue to fail to successfully implement and comply with the guidelines due to a sincere lack of information assurance and awareness, which ties directly into human behavior. A discussion on the intersection of information security awareness and behavior will be presented. The UTAUT theory measures and informs the researcher on factors that influence the end-user. Conclusively, recommendations will be offered on why organizations need to invest in a mechanism that measures these factors, which increases information awareness to change behavior, thus achieving better compliance with their organizational ISPs.

show abstract

“…2,3 For this reason, organisations should be actively involved in information security awareness programmes as social media risks are ever-increasing. 4,5 According to Frauenstein and Flowerday 6 technology controls alone cannot deal with social media risks; therefore, employees play a vital role in the defence.…”

Section: Introductionmentioning

confidence: 99%

“…Professional isolation and job performance was found to be highly negatively correlated. Aloul 4 and Ajzen and Fishbein 5 notice a rise in phishing attacks, for instance, malspam and ransomware attacks as COVID-19 is used by attackers as bait to impersonate brands and mislead employees. This puts personal computers and phones on high risk and will likely result in more of these gadgets getting infected.…”

Section: Introductionmentioning

confidence: 99%

“…Moreover, if employees are not well informed regarding the risks and privacy issues when accessing social media during working hours at the workplace, they could expose the organisation's reputational damage and customer loss. 4,5 Furthermore, the emergence of COVID-19 plague has forced businesses and governments to depend increasingly on technology to assist citizens, thus the use of digital systems have become popular and the only alternative to save people and businesses. 8 New demands have been placed on networks and datacentre infrastructure as remote working and collaboration tools have become important systems, with a new wave of demands placed on networks and datacentre infrastructure.…”

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

Narrative review: Social media use by employees and the risk to institutional and personal information security compliance in South Africa

Murire

Flowerday

Strydom

et al. 2021

The Journal for Transdisciplinary Research in Southern Africa

View full text Add to dashboard Cite

Social media platforms have become essential to organisations in developing countries as they can offer a business advantage. This comes with security risks and privacy concerns as numerous scientific literatures have testified. Although the majority of employees are using social media privately and at the workplace (using the same device such as a smartphone), some organisations have not effectively established information security awareness programmes to protect their electronic information backbone. It is a fact that professional hackers are prowling constantly to gain access to systems of organisations and sometimes employees make naïve mistakes that can open the door to cyberattacks, which exploit vulnerabilities in the organisation’s system. The current Coronavirus Disease 2019 (COVID-19) crisis is a prime example where employees and students are encouraged to work from home. No organisation does have complete control over the security measures each employee has in place for his or her private connection. This study applied a desktop review to identify the cyber risks associated with social media use at the workplace. A scoping literature review gathered the data following a qualitative approach. The theories of reasoned action and deterrence were used as a theoretical foundation for the study. A model is proposed to enhance employee information security compliance when using social media at the workplace and demonstrates how awareness strategies can be employed to improve employee information security compliance. It is recommended that organisations implement methods to minimise social media risks to ensure that the integrity of information is preserved through these awareness programmes to employees.

show abstract

The Need for Effective Information Security Awareness

Cited by 75 publications

References 6 publications

Impacts and Satisfaction of Using Smartphones for Learning in a University Context

Impacts and Satisfaction of Using Smartphones for Learning in a University Context

A Perspective on the Intersection of Information Security Policies and IA Awareness, Factoring in End-User Behavior

Narrative review: Social media use by employees and the risk to institutional and personal information security compliance in South Africa

Contact Info

Product

Resources

About