The Cybersecurity (CSEC) Questionnaire: Individual Differences in Unintentional Insider Threat Behaviours

Date

2021-06-14

Journal Title

Journal ISSN

Volume Title

Publisher

IEEE

Abstract

The present study identifies a number of individual difference traits that are related to cyber hygiene behavior in order to develop a brief questionnaire. The resulting questionnaire identifies basic vulnerabilities in users' practices consisting of updating software, changing passwords, and disclosure of information on social media platforms (SMPs). Using existing scales assessing individual differences (i.e., conscientiousness, extraversion, and openness, regulatory focus), we argue that the cybersecurity scale (CSEC) can be used to identify individuals within an organization that need remedial education and training. Moreover, CSEC scores differentiate between assessment disclosure vulnerability and intrusion vulnerability, allowing for the identification of different kinds of cybersecurity practices.

Description

Keywords

Training, Privacy, Social Networking, Affordances, Standards Organizations, Unintentional Insider Threat

Citation

J. R. Schoenherr and R. Thomson, "The Cybersecurity (CSEC) Questionnaire: Individual Differences in Unintentional Insider Threat Behaviours," 2021 International Conference on Cyber Situational Awareness, Data Analytics and Assessment (CyberSA), Dublin, Ireland, 2021, pp. 1-8, doi: 10.1109/CyberSA52016.2021.9478213.