Journal of Information Technology Theory and Application (JITTA)

Factors that Affect the Success of Security Education, Training, and Awareness Programs: A Literature Review

Denitsa Kirova, University of HagenFollow
Ulrike Baumoel, University of HagenFollow

Abstract

Preventing IT security incidents poses a great challenge for organizations. Today, senior managers allocate more resources to IT security programs (especially those programs that focus on educating and training employees) in order to reduce human misbehavior—a significant cause of IT security incidents. Building on the results of a literature review, we identify factors that affect the success of security education, training, and awareness (SETA) programs and organize them in a conceptual classification. The classification contains human influencing factors derived from different behavioral, decision making, and criminology theories that lead to IT security compliance and noncompliance. The classification comprehensively summarizes these factors and shows the correlations between them. The classification can help one to design and develop SETA programs and to establish suitable conditions for integrating them into organizations.

Recommended Citation

Kirova, Denitsa and Baumoel, Ulrike (2018) "Factors that Affect the Success of Security Education, Training, and Awareness Programs: A Literature Review," Journal of Information Technology Theory and Application (JITTA): Vol. 19: Iss. 4, Article 4.
Available at: https://aisel.aisnet.org/jitta/vol19/iss4/4

Download

COinS

Journal of Information Technology Theory and Application (JITTA)

Factors that Affect the Success of Security Education, Training, and Awareness Programs: A Literature Review

Authors

Abstract

Recommended Citation

Share

Search