Abstract
The technological evolution has formed new challenges for organizations to safeguard their information as digital assets. Information Security Awareness (ISA) is the cognitive state where individuals comprehend information security, threats, and the capability to develop preventive strategies. Prior studies discovered that human mistakes or misbehavior is the most vulnerable link in information security due to insufficient security awareness. There were massive data breaches reported throughout the years globally. Literature shows that individuals will develop their evaluations of risks and sense of security awareness when receiving security risk information such as data breach incidents. These indications motivated us to examine the effect of an unexplored factor, that is, data breach publicity (DBR) on ISA. The purpose of this research is to discover if DBR significantly improves a model’s ability to predict ISA and its magnitude in influencing ISA. A 3-stage hierarchical linear regression approach was used to build up the model with prior known influential factors to predict ISA. To the extent of our knowledge, there is no study reported to date regarding the implication of DBR on ISA. Our main findings reveal that DBR significantly explains 6.7% of ISA and achieves the highest coefficient comparing with prior known factors. Our research contributes to a novel discovery of a new factor that significantly influences ISA and its magnitude in increasing ISA. This discovery implies the need to incorporate the knowledge of data breach incidents into ISA-related educative programs or strategies to increase ISA.
Highlights
As organizations in this era heavily rely on Information Systems (IS) to function and ensure high productivity, the concern for information security has emerged as one of the top priorities in any organization’s security management [1], [2] to maintain information availability [3], confidentiality and integrity [4]
STUDY DESIGN For data collection, an online survey questionnaire was formulated according to the factors we wanted to include in the hierarchical regression model for testing, including the demographic and known factors studied by literature, and the new factor, data breach publicity (DBR), that we are interested in investigating
Known factors of Information Security Awareness (ISA) were adopted based on previous literature as the research framework, except for the Data Breach Publicity factor, which was proposed for investigation in this study
Summary
As organizations in this era heavily rely on Information Systems (IS) to function and ensure high productivity, the concern for information security has emerged as one of the top priorities in any organization’s security management [1], [2] to maintain information availability [3], confidentiality and integrity [4]. Mize the security risks, organizations have deployed technical measures such as implementing security technologies to safeguard business information assets [6]. It was found that investing in such technologies solely is inadequate to eliminate security risks and is not fully adequate to guarantee information security [7]. Researchers asserted that the weakest link in the information security system is usually due to the employees’ misused behavior; employees’ naïve mistakes and accidental or intentional harm are the most prevalent factors leading to security breaches [4], [8].
Sign-in/Register to view highlights & summary Sign-in/Register to access full text options 
Talk to us
Join us for a 30 min session where you can share your feedback and ask us any queries you have
Schedule a callDisclaimer: All third-party content on this website/platform is and will remain the property of their respective owners and is provided on "as is" basis without any warranties, express or implied. Use of third-party content does not indicate any affiliation, sponsorship with or endorsement by them. Any references to third-party content is to identify the corresponding services and shall be considered fair use under The CopyrightLaw.
