A systematic literature review: Information security culture

Behavioral research; Information systems; Metadata; Social sciences; Societies and institutions; Attitudes; Best practices; Critical factors; Human behaviors; Information security cultures; Security knowledge; Systematic literature review; Weakest links; Security of data

Saved in:
Bibliographic Details
Main Authors: Mahfuth A., Yussof S., Baker A.A., Ali N.
Other Authors: 57190976577
Format: Conference Paper
Published: IEEE Computer Society 2023
Tags: Add Tag
No Tags, Be the first to tag this record!
Institution: Universiti Tenaga Nasional
id my.uniten.dspace-23140
record_format dspace
spelling my.uniten.dspace-231402023-05-29T14:37:57Z A systematic literature review: Information security culture Mahfuth A. Yussof S. Baker A.A. Ali N. 57190976577 16023225600 35178991300 54985243500 Behavioral research; Information systems; Metadata; Social sciences; Societies and institutions; Attitudes; Best practices; Critical factors; Human behaviors; Information security cultures; Security knowledge; Systematic literature review; Weakest links; Security of data Human behavior inside organizations is considered the main threat to organizations. Moreover, in information security the human element consider the most of weakest link in general. Therefore it is crucial to create an information security culture to protect the organization's assets from inside and to influence employees' security behavior. This paper focuses on identifying the definitions and frameworks for establishing and maintaining information security culture inside organizations. It presents work have been done to conduct a systematic literature review of papers published on information security culture from 2003 to 2016. The review identified 68 papers that focus on this area, 18 of which propose an information security culture framework. An analysis of these papers indicate there is a positive relationship between levels of knowledge and how employees behave. The level of knowledge significantly affects information security behavior and should be considered as a critical factor in the effectiveness of information security culture and in any further work that is carried out on information security culture. Therefore, there is a need for more studies to identity the security knowledge that needs to be incorporated into organizations and to find instances of best practice for building an information security culture within organizations. � 2017 IEEE. Final 2023-05-29T06:37:57Z 2023-05-29T06:37:57Z 2017 Conference Paper 10.1109/ICRIIS.2017.8002442 2-s2.0-85029958831 https://www.scopus.com/inward/record.uri?eid=2-s2.0-85029958831&doi=10.1109%2fICRIIS.2017.8002442&partnerID=40&md5=1e7463eb271049eb774b9ea26bcd24b0 https://irepository.uniten.edu.my/handle/123456789/23140 8002442 IEEE Computer Society Scopus
institution Universiti Tenaga Nasional
building UNITEN Library
collection Institutional Repository
continent Asia
country Malaysia
content_provider Universiti Tenaga Nasional
content_source UNITEN Institutional Repository
url_provider http://dspace.uniten.edu.my/
description Behavioral research; Information systems; Metadata; Social sciences; Societies and institutions; Attitudes; Best practices; Critical factors; Human behaviors; Information security cultures; Security knowledge; Systematic literature review; Weakest links; Security of data
author2 57190976577
author_facet 57190976577
Mahfuth A.
Yussof S.
Baker A.A.
Ali N.
format Conference Paper
author Mahfuth A.
Yussof S.
Baker A.A.
Ali N.
spellingShingle Mahfuth A.
Yussof S.
Baker A.A.
Ali N.
A systematic literature review: Information security culture
author_sort Mahfuth A.
title A systematic literature review: Information security culture
title_short A systematic literature review: Information security culture
title_full A systematic literature review: Information security culture
title_fullStr A systematic literature review: Information security culture
title_full_unstemmed A systematic literature review: Information security culture
title_sort systematic literature review: information security culture
publisher IEEE Computer Society
publishDate 2023
_version_ 1806427456612073472