Affiliation:
1. Cankaya University, Turkey
Abstract
Research was conducted to increase the awareness of employees with regard to cyber security to fill the gap in the literature where few studies on how effective the measures implemented in organizations were reported. This research uses the outcome of the phishing drills that a public institution applied to its personnel, participation of said personnel in awareness training, and the reading statistics of regularly published information security bulletins. This has been beneficial in determining the methods to increase the cyber security awareness of personnel in organizations with 1,000 or more personnel; users were considered as a whole, and not individually evaluated. Findings report that organizations can increase users' cybersecurity awareness by systematically conducting phishing exercises, providing awareness training, and regularly publishing information security bulletins. The awareness of reading bulletins rapidly increased after phishing exercises and training and decreased in the following months; however, an increase was observed in the long term.
Reference21 articles.
1. AkalM. (2022). Information Security Awareness in IT Companies Ufuk University].
2. Altiner, I. (2021). Evaluation of Teachers' Personal Cyber Security Awareness Levels According to Different Variables. Ankara University.
3. Oltalama Saldırıları Farkındalık Tatbikatı Örneği
4. Cyber Attack Methods and Current Situation Analysis of Turkey’s Cyber Safety.;F.Aslay;International Journal of Multidisciplinary Studies and Innovative Technologies,2017
5. Chatchalermpun, S., Wuttidittachotti, P., & Daengsi, T. (2020). Cybersecurity Drill Test Using Phishing Attack: A Pilot Study of a Large Financial Services Firm in Thailand. 10th Symposium on Computer Applications & Industrial Electronics (ISCAIE), Malaysia.