Is It Possible to Change the Cyber Security Behaviours of Employees? Barriers and Promoters

Ahu  Ergen; Ahmet  Naci Ünal; Mehmet Sıtkı  Saygili

doi:10.36941/ajis-2021-0111

Authors

Ahu Ergen School of Applied Disciplines, Bahçeşehir University, Yıldız, Çırağan Cd., 34349 Beşiktaş, İstanbul, Turkey
Ahmet Naci Ünal Faculty of Engineering and Natural Sciences, Bahçeşehir University, Yıldız, Çırağan Cd., 34349 Beşiktaş, İstanbul, Turkey
Mehmet Sıtkı Saygili Vocational School, Bahçeşehir University, Yıldız, Çırağan Cd., 34349 Beşiktaş, İstanbul, Turkey

DOI:

https://doi.org/10.36941/ajis-2021-0111

Keywords:

cyber security, cyber security awareness, cyber security behaviour, cyberspace, information technology

Abstract

The increase in cyber attacks cause individuals and businesses to face financial loss and reputation damage. Most cyber security studies ignore human factor and focus only on technological measures although the cyber security behaviors of employees are vital for the organisations. This paper aims to explore and discuss the role of employees in cyber security. In-depth interviews with eight cyber security experts were conducted through semi-structured, open-ended interviews. This study gives perspectives regarding the cyber security behaviors of employees, the barriers and promoters of secure behaviors in cyberspace. The findings mainly stem reasons of unsecure behaviors and solutions for them, and provide implications to companies for effective training and recommendations to adopt secure behaviors in the companies.

Received: 4 March 2021 / Accepted: 6 May 2021 / Published: 8 July 2021