The pathway to security – mitigating user negligence

Purpose Through the use of effective training techniques and exercises, employees and users can be educated on how to make safe information security decisions. It is critical to the success of a total information security program that users are trained properly as they are a major layer of defense against malicious intent. The current methods of training people about information security are failing, and the number of user-related breaches increases every year. Design/methodology/approach By researching and observing current methods and comparing other fields of study, this paper describes the best methodology for modifying user behavior as it pertains to information security. Findings Through effective training practices, user negligence can be mitigated and controlled, and the information security program can be better practiced throughout entire organizations. Originality/value By using an effective training method to teach employees about information security, employees become an invaluable part of a company’s overall information security strategy. By using this method, employees are no longer the weak link in information security.

MoreLess

Year of publication:	2016
Authors:	Kennedy, Sarah Elizabeth
Published in:	Information & Computer Security. - Emerald Group Publishing Limited, ISSN 2056-497X, ZDB-ID 2810936-3. - Vol. 24.2016, 3, p. 255-264
Publisher:	Emerald Group Publishing Limited
Subject:	Training \| Education \| Information security \| User education \| Behaviour modification \| User awareness

More details

Type of publication:	Article
Type of publication (narrower categories):	research-article
Language:	English
Other identifiers:	10.1108/ICS-10-2014-0065 [DOI]
Source:	Other ZBW resources

Persistent link: https://www.econbiz.de/10014754847