Abstract
This paper presents a research study conducted to investigate the effect of different evidence-based cybersecurity training methods on employees’ cybersecurity risk perception and self-reported behavior. Our study participants were randomly assigned into four groups (i.e., malware report, malware videos, both malware report and malware videos, no interventions) to assess the effects of cybersecurity training on their perceptions of vulnerability, severity, self-efficacy, security intention as well as their self-reported cybersecurity behaviors. The results show that evidence-based malware report is a relatively better training method in affecting employees’ intentions of engaging in recommended cybersecurity behaviors comparing with the other training methods used in this study.
Recommended Citation
He, Wu; Anwar, Mohd; Ash, Ivan; Li, Ling; Yuan, Xiaohong; Xu, Li; and Tian, Xin, "Effects of Evidence-Based Malware Cybersecurity Training on Employees" (2019). AMCIS 2019 Proceedings. 11.
https://aisel.aisnet.org/amcis2019/info_security_privacy/info_security_privacy/11
Effects of Evidence-Based Malware Cybersecurity Training on Employees
This paper presents a research study conducted to investigate the effect of different evidence-based cybersecurity training methods on employees’ cybersecurity risk perception and self-reported behavior. Our study participants were randomly assigned into four groups (i.e., malware report, malware videos, both malware report and malware videos, no interventions) to assess the effects of cybersecurity training on their perceptions of vulnerability, severity, self-efficacy, security intention as well as their self-reported cybersecurity behaviors. The results show that evidence-based malware report is a relatively better training method in affecting employees’ intentions of engaging in recommended cybersecurity behaviors comparing with the other training methods used in this study.