Skip to the main content

Preliminary communication

https://doi.org/10.59245/ps.32.4.3

Evaluation of Information Security Culture of Key Service Operators

Krunoslav Arbanas orcid id orcid.org/0000-0001-8973-5932 ; Hrvatska energetska regulatorna agencija, Zagreb, Hrvatska


Full text: croatian pdf 962 Kb

page 394-409

downloads: 229

cite


Abstract

Relevant literature has been pointing out for many years that information security has ceased to be exclusively technical and has become primarily a business issue with a particular emphasis on the human factor. With this shift in thinking, the focus changes from exclusively technical security measures to organizational and sociological protection elements, bringing information security culture into focus. A well-established information security culture, which, in addition to established technical measures, considers sociological factors and organizational measures, can not only contribute to the protection of information but also change the way employees think so that they stop viewing information security as an obstacle in their daily work. This paper presents the results of empirical research of information security culture based on established security practices conducted on 239 employees of organizations from 8 sectors representing key service operators in the Republic of Croatia.

Keywords

information security, cybersecurity, information security culture, security culture

Hrčak ID:

311283

URI

https://hrcak.srce.hr/311283

Publication date:

20.12.2023.

Article data in other languages: croatian

Visits: 730 *