The increase of connected devices and various technologies has resulted in changes in human behavior – People are relying more on online communications instead of face to face or telephone conversations. The paper describes the importance of focusing on human factors in a cyber-security strategy. It reviews the existing approaches, including methods analyzing root behaviors. Several metrics are tailored, and practical cases are described, including gender impact. The paper lists several pieces of studies showing that often, employees do not comply with guidelines and policies, and many may not even that these exist. It studies the methodology to decrypt people’s attitude and knowledge. The objective is to identify fundamentals that would help further investigation and improve the development of cyber security strategies based on current literature and research. The results outlined in this paper present a need for the cyber security field to adopt a proactive approach towards human behavior.

Published in: World Congress on Internet Security (WorldCIS-2016)

• Date of Conference: 14-16 November 2016
• DOI: 10.2053/WorldCIS.2016.0005
• ISBN: 978-1-908320-66-7
• Conference Location: Heathrow Windsor Marriott Hotel, UK