Abstract
Context: In today's interconnected digital landscape, cultivating a robust Information Security culture within organizations is imperative to mitigate data breaches and unauthorized access risks. Objective: This paper presents the preliminary structure of the Security Culture Readiness Model (SCRM), aimed at assessing and enhancing organizations' preparedness to instill a comprehensive security culture. Method: Through a systematic Multivocal Literature Review (MLR), we systematically identified pivotal knowledge areas and best practices essential for nurturing a resilient security culture within university settings. Subsequently, the SCRM underwent rigorous evaluation utilizing a case study methodology to refine its structure and applicability. Results: Our analysis demonstrates the SCRM's efficacy in evaluating universities' readiness levels and pinpointing actionable strategies to foster an information security culture. By serving as a foundational tool, the SCRM empowers universities to elevate security awareness, discern strengths, and address weaknesses, thereby fostering a culture of vigilance and resilience against evolving cybersecurity threats. Conclusion: This study contributes to advancing security practices within universities, offering invaluable insights into navigating complex security challenges and fortifying readiness for future adversities.
Original language | English |
---|---|
Title of host publication | Proceedings of 2024 28th International Conference on Evaluation and Assessment in Software Engineering, EASE 2024 |
Publisher | Association for Computing Machinery |
Pages | 692-697 |
Number of pages | 6 |
ISBN (Electronic) | 9798400717017 |
DOIs | |
State | Published - 18 Jun 2024 |
Event | 28th International Conference on Evaluation and Assessment in Software Engineering, EASE 2024 - Salerno, Italy Duration: 18 Jun 2024 → 21 Jun 2024 |
Publication series
Name | ACM International Conference Proceeding Series |
---|
Conference
Conference | 28th International Conference on Evaluation and Assessment in Software Engineering, EASE 2024 |
---|---|
Country/Territory | Italy |
City | Salerno |
Period | 18/06/24 → 21/06/24 |
Bibliographical note
Publisher Copyright:© 2024 ACM.
Keywords
- Best practices
- Knowledge area
- Multivocal literature review
- Readiness model
- Security Culture
- Universities
ASJC Scopus subject areas
- Human-Computer Interaction
- Computer Networks and Communications
- Computer Vision and Pattern Recognition
- Software