Cloud computing represents a fundamental shift in the way information services are provided but with its unique architecture comes additional security challenges, many of which are technical in nature. However, the paradigm shift also presents new challenges, which are non-technical and whether or not companies actually consider all of these issues in moving to the cloud is a matter of concern. This paper attempts to elevate the notion of cloud security consciousness (CSC) in the domain of small firms with a goal of introducing a level of innateness into the concept in its practical use. By synthesising CSC with various behavioural theories including coping theory, we seek to place CSC and the coping process at the centre of a security-centric cognitive framework for cloud adoption, while recognising that such coping processes are heavily shaped by both social influence and self-efficacy factors.