ju.se
System disruptions
We are currently experiencing disruptions on the search portals due to high traffic. We are working to resolve the issue, you may temporarily encounter an error message.
EnglishSvenskaNorsk
Change search
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf
A taxonomy of factors that contribute to organizational Cybersecurity Awareness (CSA)
Jönköping University, School of Engineering, JTH, Department of Computer Science and Informatics.ORCID iD: 0000-0003-2084-9119
School of Informatics, University of Skövde, Skövde, Sweden.
School of Informatics, University of Skövde, Skövde, Sweden.
2024 (English)In: Information and Computer Security, E-ISSN 2056-4961Article in journal (Refereed) Epub ahead of print
Abstract [en]

Purpose: Developing cybersecurity awareness (CSA) is becoming a more and more important goal for modern organizations. CSA is a complex sociotechnical system where social, technical and organizational aspects affect each other in an intertwined way. With the goal of providing a holistic representation of CSA, this paper aims to develop a taxonomy of factors that contribute to organizational CSA.

Design/methodology/approach: The research used a design science approach including a literature review and practitioner interviews. A taxonomy was drafted based on 71 previous research publications. It was then updated and refined in two iterations of interviews with domain experts.

Findings: The result of this research is a taxonomy which outline six domains for importance for organization CSA. Each domain includes several activities which can be undertaken to increase CSA within an organization. As such, it provides a holistic overview of the CSA field.

Practical implications: Organizations can adopt the taxonomy to create a roadmap for internal CSA practices. For example, an organization could assess how well it performs in the six main themes and use the subthemes as inspiration when deciding on CSA activities.

Originality/value: The output of this research provides an overview of CSA based on information extracted from existing literature and then reviewed by practitioners. It also outlines how different aspects of CSA are interdependent on each other. 
Place, publisher, year, edition, pages
Emerald Group Publishing Limited, 2024.
Keywords [en]
Awareness, Culture, Cybersecurity, Information security, Taxonomies, Complex sociotechnical systems, Cyber security, Design science, Design/methodology/approach, Literature reviews, Organisational, Organizational aspects, Technical aspects
National Category
Computer and Information Sciences
Identifiers
URN: urn:nbn:se:hj:diva-65375DOI: 10.1108/ICS-11-2023-0209ISI: 001248981600001Scopus ID: 2-s2.0-85196288074Local ID: HOA;;959270OAI: oai:DiVA.org:hj-65375DiVA, id: diva2:1877277
Available from: 2024-06-25 Created: 2024-06-25 Last updated: 2024-07-16

Open Access in DiVA

No full text in DiVA

Other links

Publisher's full textScopus

Authority records

Kävrestad, Joakim

Search in DiVA

By author/editor
Kävrestad, Joakim
By organisation
JTH, Department of Computer Science and Informatics
In the same journal
Information and Computer Security
Computer and Information Sciences

Search outside of DiVA

GoogleGoogle Scholar

doi
urn-nbn

Altmetric score

doi
urn-nbn
Total: 85 hits
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf
v. 2.45.0
|
WCAG
|
Jönköping University
|
Jönköping University Library