A Decade of Studies on Cyber Security Training in Organizations using Social Network Analysis: A Systematic Literature Review Through Keyword co-Occurrence Network

Abstract

In recent years cyber security training has become crucial to all organizations in order to be compliant with regulations and remain competitive in the market. To understand how vulnerabilities due to lack of employee awareness can be avoided and how organizations can provide useful training, a scientific systematic review is conducted. While traditional systematic review studies focus on analyzing publication trends, country of publication, or author affiliations, this research performs a systematic review of the field by mapping the existing state of research based on topic clustering and social network analysis. Network analysis using keyword co-occurrence is deemed to be advantageous as it enables identification of research themes and how they have evolved. The systematic review follows a four step process: data collection on cyber security training from the Web of Science database; data filtering to avoid duplicates and identify the core papers; network analysis creating the co-occurrence networks using these papers; and analyzing the patterns among key words that emerge in the literature. This research reveals the trends of core topics on cyber security training in organizations. By using the quantitative and rigorous research approach for conducting a systematic review of cyber security training in organizations in the cybersecurity field, this research contributes to filling the gap on cyber security training review. The findings highlight the trend towards adopting immersive technologies that provide insight into the employees’ cyber behavior before developing effective training.