scholarly journals Assessing the Effects of Gamification on Enhancing Information Security Awareness Knowledge

2021 ◽  
Vol 11 (19) ◽  
pp. 9266
Author(s):  
Tienhua Wu ◽  
Kuang-You Tien ◽  
Wei-Chih Hsu ◽  
Fu-Hsiang Wen
Keyword(s):  
Gender Difference ◽  
Information Security ◽  
Effective Means ◽  
Learning System ◽  
Security Awareness ◽  
Information Security Awareness ◽  
Security Breaches ◽  
Knowledge Enhancement ◽  
Quasi Experimental ◽  
Security Compliance

Information security awareness (ISA) has become a vital issue, as security breaches often attributed to humans lead to losses for individuals and organizations. Information security (IS) education may be an effective strategy to improve students’ ISA; however, studies associated with the relationships between teaching effects and information security learning are few. This study adopted gamification practice and examined its effect on students’ ISA knowledge enhancement, attitude and intention of security compliance, and willingness for continuous IS education. This study also examined the gender difference in a gamified learning system. One hundred ten undergraduates participated in a quasi-experimental study. The results indicated that students within a gamified class performed better than students within a lecture-based instructional group. We found significant gamification effects on the three security focus areas of password management, Internet use, and information handling. Gamification did not significantly impact the attitude and intention of participants’ security compliance and students’ willingness for continuous IS learning. Gender difference in the effect of gamification on ISA knowledge enhancement was not observed as well. The research provides theoretical and practical contributions by incorporating gamification into IS learning and suggests gamification as an effective means to enhance students’ knowledge acquisition in an engaging, timely, economical, and repeated manner.

Organisational culture, procedural countermeasures, and employee security behaviour

2017 ◽  
Vol 25 (2) ◽  
pp. 118-136 ◽  
Author(s):  
Lena Yuryna Connolly ◽  
Michael Lang ◽  
John Gathegi ◽  
Doug J. Tygar
Keyword(s):  
Information Security ◽  
Organisational Culture ◽  
Security Awareness ◽  
Deterrence Theory ◽  
Content Type ◽  
General Deterrence ◽  
Information Security Awareness ◽  
Security Breaches ◽  
Technical Issues ◽  
Security Countermeasures

Purpose This paper provides new insights about security behaviour in selected US and Irish organisations by investigating how organisational culture and procedural security countermeasures tend to influence employee security actions. An increasing number of information security breaches in organisations presents a serious threat to the confidentiality of personal and commercially sensitive data. While recent research shows that humans are the weakest link in the security chain and the root cause of a great portion of security breaches, the extant security literature tends to focus on technical issues. Design/methodology/approach This paper builds on general deterrence theory and prior organisational culture literature. The methodology adapted for this study draws on the analytical grounded theory approach employing a constant comparative method. Findings This paper demonstrates that procedural security countermeasures and organisational culture tend to affect security behaviour in organisational settings. Research limitations/implications This paper fills the void in information security research and takes its place among the very few studies that focus on behavioural as opposed to technical issues. Practical implications This paper highlights the important role of procedural security countermeasures, information security awareness and organisational culture in managing illicit behaviour of employees. Originality/value This study extends general deterrence theory in a novel way by including information security awareness in the research model and by investigating both negative and positive behaviours.

Raising information security awareness in the academic setting

VINE ◽  
2001 ◽  
Vol 31 (2) ◽  
pp. 11-16 ◽  
Author(s):  
Andrew Cox ◽  
Sarah Connolly ◽  
James Currall
Keyword(s):  
Information Security ◽  
Security Awareness ◽  
Academic Setting ◽  
Information Security Awareness
Sign in / Sign up

Export Citation Format

Share Document