Why should they care? Conceptualizing the challenges of information security training

Most organizations rely on individuals without or with little security knowledge to participate in information security tasks. Intending to enable them, information security trainings are usually used. But their effectiveness is debatable. In this contribution we combine descriptive analysis with the social systems theory and current literature on organizational learning and change management to conceptualize the challenges of information security training. We find that the challenges of security training are rooted within a basic dilemma of security: its value-promise (addressing of risks) is not suitable for communication within an organization. These findings are part of an ongoing research project on trainings for IoT security.

Kurowski, Sebastian; Cetin, Fatma; Fischer, Rudolf (2021): Why should they care? Conceptualizing the challenges of information security training. Open Identity Summit 2021. Bonn: Gesellschaft für Informatik e.V.. PISSN: 1617-5468. ISBN: 978-3-88579-706-7. pp. 199-204. Short Paper. Copenhagen, Denmark. 01.-02. June 2021

Schlagwörter

Security training , awareness , policy compliance , system theory , change management , organizational learning

Sammlungen

P312 - Open Identity Summit 2021

Komplettanzeige

Why should they care? Conceptualizing the challenges of information security training

Volltext URI

Dokumententyp

Dateien

Zusatzinformation

Datum

Autor:innen

Zeitschriftentitel

ISSN der Zeitschrift

Bandtitel

Quelle

Verlag

Zusammenfassung

Beschreibung

Schlagwörter

Zitierform

DOI

Tags

Sammlungen