Deliver Security Awareness Training, then Repeat: {Deliver; Measure Efficacy}

机译：进行安全意识培训，然后重复：{交付；评估功效}

获取原文

页面导航

摘要
著录项
相似文献
相关主题

摘要

Organisational information security policy contents are disseminated by awareness and training drives. Its success is usually judged based on immediate post-training self-reports which are usually subject to social desirability bias. Such self-reports are generally positive, but they cannot act as a proxy for actual subsequent behaviours. This study aims to formulate and test a more comprehensive way of measuring the efficacy of these awareness and training drives, called ASTUTE. We commenced by delivering security training. We then assessed security awareness (post-training), and followed up by measuring actual behaviours. When we measured actual behaviours after a single delivery of security awareness training, the conversion from intention to behaviour was half of the desired 100%. We then proceeded to deliver the training again, another two times. The repeated training significantly reduced the gap between self-reported intention and actual secure behaviours.

机译：组织信息安全策略的内容由意识和培训驱动力传播。通常根据训练后的即时自我报告来判断其成功，而自我报告通常会受到社会期望偏差的影响。这样的自我报告通常是积极的，但是它们不能代替实际的后续行为。这项研究旨在制定和测试一种更全面的方法来衡量这些意识和培训动力的有效性，称为ASTUTE。我们从提供安全培训开始。然后，我们评估了安全意识（培训后），并通过测量实际行为进行了跟进。当我们在一次安全意识培训后测量实际行为时，从意图到行为的转换是期望的100％的一半。然后，我们又进行了两次培训。反复的训练大大减少了自我报告的意图和实际的安全行为之间的差距。

著录项

来源
《Conference on Information Communications Technology and Society》|2019年|1-6|共6页
会议地点 Durban(ZA)
作者
Tapiwa Gundu; Stephen Flowerday; Karen Renaud;
展开▼
作者单位

Sol Plaatje University Kimberley 8301 South Africa;

Rhodes University Grahamstown 6139 South Africa;

University of South Africa;

展开▼
会议组织
原文格式 PDF
正文语种
中图分类
关键词
Training; Information security; Electrical resistance measurement; Standards; Logistics; Reliability;

机译：训练;信息安全;电阻测量；标准；后勤;可靠性;

相似文献

外文文献
中文文献
专利

1. The impact of neglecting user-centered information design principles when delivering online information: Cyber security awareness websites as a case study [J] . Maria dos Santos Lonsdale, David J. Lonsdale, Hye-Won Lim Information Design Journal + Document Design . 2018,第2期

机译：在传递在线信息时忽略以用户为中心的信息设计原则的影响：以网络安全意识网站为例
2. The impact of neglecting user-centered information design principles when delivering online information: Cyber security awareness websites as a case study [J] . Maria dos Santos Lonsdale, David J. Lonsdale, Hye-Won Lim Information Design Journal + Document Design . 2018,第2期

机译：忽略用户中心信息设计原则在提供在线信息时的影响：网络安全意识网站作为案例研究
3. Blood glucose awareness training delivered over the internet. [J] . Cox D, Ritterband L, Magee J, Diabetes care . 2008,第8期

机译：通过互联网提供的血糖意识培训。
4. Deliver Security Awareness Training, then Repeat: {Deliver; Measure Efficacy} [C] . Tapiwa Gundu, Stephen Flowerday, Karen Renaud Conference on Information Communication Technology and Society . 2019

机译：提供安全意识培训，然后重复：{提供;测量效力}
5. Measuring the perceived transfer of learning and training for a customer service training program delivered by line managers to call center employees in a Fortune 200 financial services company. [D] . Perez, Gustavo A. 2006

机译：评估直属经理向《财富》 200强金融服务公司的呼叫中心员工提供的客户服务培训计划的学习和培训转移。
6. Delivering Evidence-Based Online Concussion Education to Medical and Healthcare Professionals: The Concussion Awareness Training Tool (CATT) [O] . Shelina Babul, Kate Turcotte, Maude Lambert, 2020

机译：向医疗和医疗保健专业人员提供基于证据的在线脑震荡教育：脑震荡意识培训工具（CATT）
7. Delivering Evidence-Based Online Concussion Education to Medical and Healthcare Professionals: The Concussion Awareness Training Tool (CATT) [O] . Shelina Babul, Kate Turcotte, Maude Lambert, 2020

机译：向医疗和医疗保健专业人员提供基于证据的在线脑震荡教育：脑震荡意识培训工具（CATT）

Deliver Security Awareness Training, then Repeat: {Deliver; Measure Efficacy}

摘要

著录项

相似文献

相关主题

期刊订阅