English

Cyber Security Behaviour In Organisations

Computers and Society 2020-04-27 v1

Abstract

This review explores the academic and policy literature in the context of everyday cyber security in organisations. In so doing, it identifies four behavioural sets that influences how people practice cyber security. These are compliance with security policy, intergroup coordination and communication, phishing/email behaviour, and password behaviour. However, it is important to note that these are not exhaustive and they do not exist in isolation. In addition, the review explores the notion of security culture as an overarching theme that overlaps and frames the four behavioural sets. The aim of this review is therefore to provide a summary of the existing literature in the area of everyday cyber security within the social sciences, with a particular focus on organisational contexts. In doing so, it develops a series of suggestions for future research directions based on existing gaps in the literature. The review also includes a theoretical lens that will aid the understanding of existing studies and wider literatures. Where possible, the review makes recommendations for organisations in relation to everyday cyber security.

Keywords

Cite

@article{arxiv.2004.11768,
  title  = {Cyber Security Behaviour In Organisations},
  author = {Amy Ertan and Georgia Crossland and Claude Heath and David Denny and Rikke Jensen},
  journal= {arXiv preprint arXiv:2004.11768},
  year   = {2020}
}

Comments

31 pages, no figures

R2 v1 2026-06-23T15:04:41.987Z