2009
DOI: 10.1016/j.istr.2010.05.002
|View full text |Cite
|
Sign up to set email alerts
|

The positive outcomes of information security awareness training in companies – A case study

Help me understand this report

Search citation statements

Order By: Relevance

Paper Sections

Select...
2
1
1
1

Citation Types

0
32
0

Year Published

2012
2012
2022
2022

Publication Types

Select...
5
3

Relationship

0
8

Authors

Journals

citations
Cited by 78 publications
(32 citation statements)
references
References 6 publications
(4 reference statements)
0
32
0
Order By: Relevance
“…In addition, Eminağaoğlu et al (2009) emphasize in their research that, in addition to standard training, organisations should periodically introduce awareness campaigns supplemented by additional interactive support materials.…”
Section: Discussionmentioning
confidence: 99%
“…In addition, Eminağaoğlu et al (2009) emphasize in their research that, in addition to standard training, organisations should periodically introduce awareness campaigns supplemented by additional interactive support materials.…”
Section: Discussionmentioning
confidence: 99%
“…Awareness training approaches certainly have an impact, but the extent of this impact is uncertain, as there is no reliable approach for measuring the lasting effect. Primary evaluation is traditionally based on supervised testing in specific case studies [Eminagaoglu et al 2009;McCrohan et al 2010]. The extent to which different awareness training strategies employed by organisations impacts their quarterly or yearly breach statistics is not measured.…”
Section: Organisationalmentioning
confidence: 99%
“…ISA programs can be structured as intense and coordinated campaigns or simply consist of several isolated initiatives [5,19]. An increased ISA through such programs can lead to improvements of employees' security compliance behavior [8]. Hence, we generally assume that ISA programs positively affect the intention for compliant security behavior [3].…”
Section: The Effects Of Isa Programs On Employees' Protection Motivationmentioning
confidence: 99%
“…An increased awareness concerning information security risks and threats is by many considered as the most cost-effective control of an organization [11]. ISA programs make employees sensitive to foster security of organizations' information systems and be aware of information security risks [8]. Actual topics for ISA programs are, among others, phishing attacks, social engineering, passwords security, secure internet use and clear screen policy [5].…”
Section: Introductionmentioning
confidence: 99%