Abstract
Cybersecurity is playing an increasing role in society today. Private individuals and small to medium-sized enterprises often do not have the staffing capacity to install their information security team, including IT administrators, who could protect the enterprise against cyberattacks. A crucial step toward improving the company’s defenses against cyberattacks is to increase the information security awareness of all employees. The present study focuses on a method defining a multidimensional awareness indicator applying Rasch and partial order methodology. The method is designed to suggest in a graphic form how awareness can be “sharpened” in the company through a multidimensional awareness indicator, derived from questionnaires. A two-step procedure is presented, involving the analysis of questionnaires and, subsequently, displaying an awareness indicator.
Reference26 articles.
1. Bruggemann, R, Koppatz P., Scholl, M, Schuktomow, R. Global Cybersecurity Index (GCI) and the Role of its 5 Pillars". Social Indicators Research,2022, 159, 125-143; doi: 10.1007/s11205-021-02739-y.
2. Scholl, M. (2023). “Sustainable Information Security Sensitization in SMEs: Designing Measures with Long-Term Effect". In: Proceedings of the 56th Hawaii International Conference on System Sciences, 2023, pp. 6058-6067; https://hdl.handle.net/10125/103369 (accessed March 2024).
3. Kühlein A., Sobania, K. Zeit für den digitalen Aufbruch: Die IHK Umfrage zur Digitalisierung/Time for the digital awakening. The IHK survey on digitization. 2022; https://www.dihk.de/de (accessed March 2024).
4. Zerr, K. (Security-Awareness-Monitoring. In: Datenschutz und Datensicherheit, 2007 - DuD 31, 519-523
5. doi: 10.1007/s11623-007-0178-x. (accessed March 2024).