Observations on Genderwise Differences among University Students in Information Security Awareness

2015 ◽  
Vol 9 (2) ◽  
pp. 60-74 ◽  
Author(s):  
Ali Farooq ◽  
Johanna Isoaho ◽  
Seppo Virtanen ◽  
Jouni Isoaho
Keyword(s):  
Information Security ◽  
University Students ◽  
Female Students ◽  
Male Students ◽  
Security Awareness ◽  
Vocabulary Test ◽  
Information Security Awareness ◽  
Educational Methods ◽  
D Values ◽  
And Behavior

The purpose of this study is to examine genderwise differences in information security awareness (ISA) among university students. 614 usable responses were collected using survey from the students of eight different disciplines in a university. ISA is considered as combination of knowledge and behavior, and called computed ISA. Knowledge and behavior is assessed using vocabulary test and scenario based questions, whereas perceived ISA (PISA) is measured on 5-point Liker type question. The application of t-test and Cohen's d values show that both the genders differ significantly from each other in their Knowledge, Behavior, computed ISA and PISA. In comparison to female students, male students are found better in terms of aforementioned variables. The study also shows that unlike male students, female students prefer to utilize their social circle to accumulate information security knowledge. Moreover, the male students prefer to learn security related issues by self-exploration, whereas, the female students prefer formal educational methods for similar learning.

scholarly journals Building an effective information security awareness program

2020 ◽  
Vol 338 ◽  
pp. 189-200
Author(s):  
Ildikó Legárd
Keyword(s):  
Information Security ◽  
Human Factor ◽  
Significant Risk ◽  
Security Awareness ◽  
Security Culture ◽  
Information Security Awareness ◽  
Weakest Link ◽  
Awareness Program ◽  
Awareness Programs ◽  
And Behavior

Many researchers and experts in the field of information security agree that the user is the weakest link in an organization’s chain of information security. Even if the system’s and the stored data’s physical and logical protection is well developed, the human factor exposes security to significant risk. The effective protection against the threats is to provide security awareness through implementing a well-developed and successful Information Security Awareness Program. Although organizations are able to recognize the importance of information security awareness, the implementation of the awareness programs can be difficult. The aim of this study is to help organizations to develop an effective Information Security Awareness Program tailored to the characteristics of the organization. The paper presents how we can build a program that influences and improves the user’s knowledge, attitude and behavior the most towards information security and makes positive changes in the security culture of an organization. To achieve that goal, the study identifies the key elements of the implementation, compares traditional awareness programs with modern trainings and highlights the importance of communication channels and methods. There is no single solution to improve information security, the essay summarizes and shows the most effective techniques that experts can use in order to seize the user’s attention toward information security, to establish credibility and trust, and to motivate action.

scholarly journals Old Monarchy in the New Cyberspace: Empirical Examination of Information Security Awareness among Austrian and Hungarian Enterprises

2015 ◽  
Vol 14 (1) ◽  
pp. 63-78
Author(s):  
Péter Sasvári ◽  
András Nemeslaki ◽  
Wolf Rauch
Keyword(s):  
Information Security ◽  
Empirical Data ◽  
Digital Literacy ◽  
Company Size ◽  
Security Awareness ◽  
Business Sector ◽  
Security Measures ◽  
Empirical Examination ◽  
Information Security Awareness ◽  
And Behavior

Information security awareness is part of organizational culture, a way of thinking and behavior which ensures that the employees of the organizations are committed to acknowledging the legitimacy of security measures, they abide by them and they also make them known to others and enforce their application. After collecting empirical data from 280 Austrian and 470 Hungarian employees of different companies we concluded that the level of information security awareness of managers and employees in the Austrian and Hungarian business sector depends on company size. The level of this type of awareness can be regarded as good in the case of corporations both in Austria and Hungary. A good level of information security awareness was observed among the Austrian medium-sized enterprises. However, in a fifth of their Hungarian counterparts, the employees need further trainings in this area. Security problems can be traced back to poor organization at a fifth of the Austrian small-sized enterprises, a third of the Austrian microenterprises, and three-quarters of the Hungarian microenterprises. In 20% of the Austrian and Hungarian enterprises, employees have distressing gaps in their knowledge in this area, furthermore, it can also be concluded that employees with higher digital literacy have a higher level of information security awareness in Austria compared to the Hungarian business sector.

Sign in / Sign up

Export Citation Format

Share Document