Please use this identifier to cite or link to this item: https://hdl.handle.net/2440/108117
Citations
Scopus Web of Science® Altmetric
?
?
Full metadata record
DC FieldValueLanguage
dc.contributor.authorParsons, K.-
dc.contributor.authorMcCormac, A.-
dc.contributor.authorPattinson, M.-
dc.contributor.authorButavicius, M.-
dc.contributor.authorJerram, C.-
dc.date.issued2014-
dc.identifier.citationInformation Management and Computer Security, 2014; 22(4):334-345-
dc.identifier.issn0968-5227-
dc.identifier.urihttp://hdl.handle.net/2440/108117-
dc.description.abstractPurpose – The purpose of this paper is to investigate the human-based information security (InfoSec) vulnerabilities in three Australian government organisations. Design/methodology/approach – A Web-based survey was developed to test attitudes, knowledge and behaviour across eight policy-based focus areas. It was completed by 203 participants across the three organisations. This was complemented by interviews with senior management from these agencies. Findings – Overall, management and employees had reasonable levels of InfoSec awareness. However, weaknesses were identified in the use of wireless technology, the reporting of security incidents and the use of social networking sites. These weaknesses were identified in the survey data of the employees and corroborated in the management interviews. Research limitations/implications – As with all such surveys, responses to the questions on attitude and behaviour (but not knowledge) may have been influenced by the social desirability bias. Further research should establish more extensive baseline data for the survey and examine its effectiveness in assessing the impact of training and risk communication interventions. Originality/value – A new survey tool is presented and tested which is of interest to academics as well as management and IT systems (security) auditors.-
dc.description.statementofresponsibilityKathryn Parsons, Agata McCormac, Malcolm Pattinson, Marcus Butavicius, Cate Jerram-
dc.language.isoen-
dc.publisherEmerald Group Publishing-
dc.rights© Emerald Group Publishing Limited-
dc.subjectInformation risk; information security (InfoSec); InfoSec awareness; InfoSec behaviour; InfoSec vulnerabilities-
dc.titleA study of information security awareness in Australian government organisations-
dc.typeJournal article-
dc.identifier.doi10.1108/IMCS-10-2013-0078-
pubs.publication-statusPublished-
dc.identifier.orcidParsons, K. [0000-0001-7040-8376]-
dc.identifier.orcidPattinson, M. [0000-0002-6129-436X]-
dc.identifier.orcidJerram, C. [0000-0002-4884-0709]-
Appears in Collections:Aurora harvest 3
Psychology publications

Files in This Item:
File Description SizeFormat 
RA_hdl_108117.pdf
  Restricted Access
Restricted Access233.78 kBAdobe PDFView/Open


Items in DSpace are protected by copyright, with all rights reserved, unless otherwise indicated.