Skip to main content
Conference ProceedingsOPEN ACCESS

Persona-driven information security awareness

Proceedings of the 30th International BCS Human Computer Interaction Conference, HCI 2016 (2016) 2016-July
DOI: 10.14236/ewic/hci2016.97
0Citations
Citations of this article
21Readers
Mendeley users who have this article in their library.

Abstract

Because human factors are a root cause of security breaches in many organisations, security awareness activities are often used to address problematic behaviours and improve security culture. Previous work has found that personas are useful for identifying audience needs & goals when designing and implementing awareness campaigns. We present a six-step security awareness process both driven by and centred around the use of personas. This can be embedded into business-as-usual activities, with 90-day cycles of awareness themes. We evaluated this process by using it to devise a security awareness campaign for a digital agency. Our results suggest a persona-centred security awareness approach is adaptable to business constraints, and contributes towards addressing security risks.

Author supplied keywords

Cite

CITATION STYLE

APA

Ki-Aries, D., Faily, S., & Beckers, K. (2016). Persona-driven information security awareness. In Proceedings of the 30th International BCS Human Computer Interaction Conference, HCI 2016 (Vol. 2016-July). BCS Learning and Development Ltd. https://doi.org/10.14236/ewic/hci2016.97

Register to see more suggestions

Mendeley helps you to discover research relevant for your work.

Already have an account?

Save time finding and organizing research with Mendeley

Sign up for free