MEASUREMENT OF EMPLOYEE INFORMATION SECURITY AWARENESS: CASE STUDY AT FINANCIAL INSTITUTION

Abstract

The lack of awareness regarding information security among employees in financial institutions can have detrimental impacts on both customers and the institution itself, both financially and in terms of trust. Therefore, this research aims to assess the information security awareness at PT XYZ, a financial institution, in order to identify the existing level of awareness, which will be used to provide recommendations. The method applied in this research is quantitative, using a questionnaire as a tool for data collection and distribution with a voluntary sampling technique among PT XYZ employees concerning their awareness of information security. The assessment of information security awareness covers 8 specific aspects, with 7 of them drawing sources from HAIS-Q and another 1 referring to the KAMI Index, using the Analytic Hierarchy Process (AHP) for weighting each area. The total number of respondents participating in this research is 52. The research results affirm that PT XYZ employees have a positive awareness of information security, indicating that there are no urgent actions needed at present. However, there are specific areas with potential for improvement, hence recommendations are provided to enhance and sustain information security awareness among employees.