{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,6,3]],"date-time":"2026-06-03T06:14:26Z","timestamp":1780467266539,"version":"3.54.1"},"reference-count":159,"publisher":"Association for Computing Machinery (ACM)","issue":"4","license":[{"start":{"date-parts":[[2023,10,23]],"date-time":"2023-10-23T00:00:00Z","timestamp":1698019200000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.acm.org\/publications\/policies\/copyright_policy#Background"}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":["SIGMIS Database"],"published-print":{"date-parts":[[2023,10,23]]},"abstract":"<jats:p>Cybersecurity threats targeting users are common in today's information systems. Threat actors exploit human behavior to gain unauthorized access to systems and data. The common suggestion for addressing this problem is to train users to behave better using SETA programs. The notion of training users is old, and several SETA methods are described in scientific literature. Yet, incidents stemming from insecure user behavior continue to happen and are reported as one of the most common types of incidents. Researchers argue that empirically proven SETA programs are needed and point out focus on knowledge rather than behavior, along with poor user adoption, as problems with existing programs. The present study aims to research user preferences regarding SETA methods, with the motivation that a user is more likely to adopt a program perceived positively. A qualitative approach is used to identify existing SETA methods, and a quantitative approach is used to measure user preferences regarding SETA delivery. We show that users prefer SETA methods to be effortless and flexible and outline how existing methods meet that preference. The results outline how SETA methods respond to user preferences and how different SETA methods can be implemented to maximize user perception, thereby supporting user adoption.<\/jats:p>","DOI":"10.1145\/3631341.3631348","type":"journal-article","created":{"date-parts":[[2023,10,30]],"date-time":"2023-10-30T18:31:33Z","timestamp":1698690693000},"page":"107-133","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":7,"title":["A Taxonomy of SETA Methods and Linkage to Delivery Preferences"],"prefix":"10.1145","volume":"54","author":[{"ORCID":"https:\/\/orcid.org\/0000-0003-2084-9119","authenticated-orcid":false,"given":"Joakim","family":"K\u00e4vrestad","sequence":"first","affiliation":[{"name":"University of Sk\u00f6vde, Sk\u00f6vde, Sweden"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"ORCID":"https:\/\/orcid.org\/0000-0001-5962-9995","authenticated-orcid":false,"given":"Marcus","family":"Nohlberg","sequence":"additional","affiliation":[{"name":"University of Sk\u00f6vde, Sk\u00f6vde, Sweden"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"ORCID":"https:\/\/orcid.org\/0000-0003-0984-7542","authenticated-orcid":false,"given":"Steven","family":"Furnell","sequence":"additional","affiliation":[{"name":"University of Nottingham, Nottingham, United Kingdom"}],"role":[{"vocabulary":"crossref","role":"author"}]}],"member":"320","published-online":{"date-parts":[[2023,10,30]]},"reference":[{"key":"e_1_2_1_1_1","doi-asserted-by":"publisher","DOI":"10.1080\/0144929X.2012.708787"},{"key":"e_1_2_1_2_1","volume-title":"Phishing susceptibility: The good, the bad, and the ugly. Paper presented at the 2016 IEEE Conference on Intelligence and Security Informatics","author":"Abbasi A.","year":"2016","unstructured":"Abbasi , A. , Zahedi , F. M. , & Chen , Y. ( 2016 ). Phishing susceptibility: The good, the bad, and the ugly. Paper presented at the 2016 IEEE Conference on Intelligence and Security Informatics . Abbasi, A., Zahedi, F. M., & Chen, Y. (2016). Phishing susceptibility: The good, the bad, and the ugly. Paper presented at the 2016 IEEE Conference on Intelligence and Security Informatics."},{"key":"e_1_2_1_3_1","volume-title":"Evaluating the effectiveness of learner controlled information security training. Computers & Security, 87","author":"Abraham S.","year":"2019","unstructured":"Abraham , S. , & Chengalur-Smith , I. ( 2019 ). Evaluating the effectiveness of learner controlled information security training. Computers & Security, 87 . Abraham, S., & Chengalur-Smith, I. (2019). Evaluating the effectiveness of learner controlled information security training. Computers & Security, 87."},{"key":"e_1_2_1_4_1","doi-asserted-by":"publisher","DOI":"10.5555\/290457.290462"},{"key":"e_1_2_1_5_1","series-title":"Lecture Notes in Engineering and Computer Science","volume-title":"Security awareness training: A review","author":"Al-Daeef M. M.","year":"2017","unstructured":"Al-Daeef , M. M. , Basir , N. , & Saudi , M. M. ( 2017 ). Security awareness training: A review . Lecture Notes in Engineering and Computer Science . Al-Daeef, M. M., Basir, N., & Saudi, M. M. (2017). Security awareness training: A review. Lecture Notes in Engineering and Computer Science."},{"key":"e_1_2_1_6_1","doi-asserted-by":"crossref","unstructured":"Al Neaimi A. & Lutaaya P. (2018) The role of culture in the design of effective cybersecurity training and awareness programmes. A case study of the United Arab Emirates (UAE). Paper presented at the International Conference on e-Infrastructure and e-Services for Developing Countries.  Al Neaimi A. & Lutaaya P. (2018) The role of culture in the design of effective cybersecurity training and awareness programmes. A case study of the United Arab Emirates (UAE). Paper presented at the International Conference on e-Infrastructure and e-Services for Developing Countries.","DOI":"10.1007\/978-3-319-98827-6_11"},{"key":"e_1_2_1_7_1","volume-title":"PERSUADED: Fighting social engineering attacks with a serious game. Paper presented at the International Conference on Trust and Privacy in Digital Business","author":"Aladawy D.","year":"2018","unstructured":"Aladawy , D. , Beckers , K. , & Pape , S. ( 2018 ). PERSUADED: Fighting social engineering attacks with a serious game. Paper presented at the International Conference on Trust and Privacy in Digital Business . Aladawy, D., Beckers, K., & Pape, S. (2018). PERSUADED: Fighting social engineering attacks with a serious game. Paper presented at the International Conference on Trust and Privacy in Digital Business."},{"key":"e_1_2_1_8_1","doi-asserted-by":"publisher","DOI":"10.1016\/j.cose.2009.12.005"},{"key":"e_1_2_1_9_1","doi-asserted-by":"publisher","DOI":"10.1145\/3309074.3309083"},{"key":"e_1_2_1_10_1","volume-title":"The design and evaluation of an interactive social engineering training programme. Paper presented at the 10th International Symposium on Human Aspects of Information Security and Assurance","author":"Alkhamis E.","year":"2016","unstructured":"Alkhamis , E. , & Renaud , K. ( 2016 ). The design and evaluation of an interactive social engineering training programme. Paper presented at the 10th International Symposium on Human Aspects of Information Security and Assurance . Alkhamis, E., & Renaud, K. (2016). The design and evaluation of an interactive social engineering training programme. Paper presented at the 10th International Symposium on Human Aspects of Information Security and Assurance."},{"key":"e_1_2_1_11_1","doi-asserted-by":"publisher","DOI":"10.1016\/j.cose.2018.03.014"},{"key":"e_1_2_1_12_1","doi-asserted-by":"publisher","DOI":"10.24251\/HICSS.2018.635"},{"issue":"9","key":"e_1_2_1_13_1","first-page":"114","article-title":"Phishing awareness and elderly users in social media","volume":"20","author":"Alwanain M. I.","year":"2020","unstructured":"Alwanain , M. I. ( 2020 ). Phishing awareness and elderly users in social media . International Journal of Computer Science and Network Security , 20 ( 9 ), 114 -- 119 . Alwanain, M. I. (2020). Phishing awareness and elderly users in social media. International Journal of Computer Science and Network Security, 20(9), 114--119.","journal-title":"International Journal of Computer Science and Network Security"},{"key":"e_1_2_1_14_1","volume-title":"Keeping customers' data secure: A cross-cultural study of cybersecurity compliance among the Gen-Mobile workforce. Computers in Human Behavior, 114","author":"Ameen N.","year":"2020","unstructured":"Ameen , N. , Tarhini , A. , Shah , M. H. , Madichie , N. , Paul , J. , & Choudrie , J. ( 2020 ). Keeping customers' data secure: A cross-cultural study of cybersecurity compliance among the Gen-Mobile workforce. Computers in Human Behavior, 114 . Ameen, N., Tarhini, A., Shah, M. H., Madichie, N., Paul, J., & Choudrie, J. (2020). Keeping customers' data secure: A cross-cultural study of cybersecurity compliance among the Gen-Mobile workforce. Computers in Human Behavior, 114."},{"key":"e_1_2_1_15_1","doi-asserted-by":"publisher","DOI":"10.1108\/JSIT-02-2018-0028"},{"key":"e_1_2_1_16_1","doi-asserted-by":"publisher","DOI":"10.1016\/j.chb.2016.12.040"},{"key":"e_1_2_1_17_1","volume-title":"Design a mobile game for home computer users to prevent from ?phishing attacks.\" Paper presented at the International Conference on Information Society, i-Society","author":"Arachchilage N. A. G.","year":"2011","unstructured":"Arachchilage , N. A. G. , & Cole , M. ( 2011 ). Design a mobile game for home computer users to prevent from ?phishing attacks.\" Paper presented at the International Conference on Information Society, i-Society 2011. Arachchilage, N. A. G., & Cole, M. (2011). Design a mobile game for home computer users to prevent from ?phishing attacks.\" Paper presented at the International Conference on Information Society, i-Society 2011."},{"key":"e_1_2_1_18_1","doi-asserted-by":"publisher","DOI":"10.2147\/JMDH.S183275"},{"key":"e_1_2_1_19_1","volume-title":"Cyber security awareness campaigns: Why do they fail to change behaviour? arXiv preprint arXiv:1901.02672","author":"Bada M.","year":"2019","unstructured":"Bada , M. , Sasse , A. M. , & Nurse , J. R. ( 2019 ). Cyber security awareness campaigns: Why do they fail to change behaviour? arXiv preprint arXiv:1901.02672 . Bada, M., Sasse, A. M., & Nurse, J. R. (2019). Cyber security awareness campaigns: Why do they fail to change behaviour? arXiv preprint arXiv:1901.02672."},{"key":"e_1_2_1_20_1","volume-title":"Proceedings of the 2017 6th International Conference on Electrical Engineering and Informatics: Sustainable Society Through Digital Innovation.","author":"Bakar N. A.","year":"2018","unstructured":"Bakar , N. A. , Mohd , M. , & Sulaiman , R. ( 2018 ). Information leakage preventive training . Proceedings of the 2017 6th International Conference on Electrical Engineering and Informatics: Sustainable Society Through Digital Innovation. Bakar, N. A., Mohd, M., & Sulaiman, R. (2018). Information leakage preventive training. Proceedings of the 2017 6th International Conference on Electrical Engineering and Informatics: Sustainable Society Through Digital Innovation."},{"key":"e_1_2_1_21_1","doi-asserted-by":"publisher","DOI":"10.25300\/MISQ\/2015\/39.4.5"},{"key":"e_1_2_1_22_1","doi-asserted-by":"publisher","DOI":"10.1191\/1478088706qp063oa"},{"key":"e_1_2_1_23_1","doi-asserted-by":"publisher","DOI":"10.1016\/j.jbusres.2007.02.015"},{"key":"e_1_2_1_24_1","doi-asserted-by":"publisher","DOI":"10.5555\/2017470.2017477"},{"key":"e_1_2_1_25_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-319-91716-0_2"},{"key":"e_1_2_1_26_1","volume-title":"Some password users are more equal than others: Towards customisation of online security initiatives. South African Journal of Information Management, 20(1)","author":"Butler R.","year":"2018","unstructured":"Butler , R. , & Butler , M. ( 2018 ). Some password users are more equal than others: Towards customisation of online security initiatives. South African Journal of Information Management, 20(1) . Butler, R., & Butler, M. (2018). Some password users are more equal than others: Towards customisation of online security initiatives. South African Journal of Information Management, 20(1)."},{"key":"e_1_2_1_27_1","doi-asserted-by":"publisher","DOI":"10.1109\/MSP.2013.106"},{"key":"e_1_2_1_28_1","volume-title":"Impact of security awareness training on phishing click-through rates. Paper presented at the 2017 IEEE International Conference on Big Data","author":"Carella A.","year":"2017","unstructured":"Carella , A. , Kotsoev , M. , & Truta , T. M. ( 2017 ). Impact of security awareness training on phishing click-through rates. Paper presented at the 2017 IEEE International Conference on Big Data . Carella, A., Kotsoev, M., & Truta, T. M. (2017). Impact of security awareness training on phishing click-through rates. Paper presented at the 2017 IEEE International Conference on Big Data."},{"key":"e_1_2_1_29_1","doi-asserted-by":"publisher","DOI":"10.1145\/3368860.3368870"},{"key":"e_1_2_1_30_1","doi-asserted-by":"publisher","DOI":"10.1007\/s11213-007-9082-4"},{"key":"e_1_2_1_31_1","doi-asserted-by":"publisher","DOI":"10.1080\/0144929X.2019.1583769"},{"key":"e_1_2_1_32_1","volume-title":"Gamifying security awareness: A new prototype. Paper presented at the International Conference on Human-Computer Interaction","author":"Cole J. R.","year":"2019","unstructured":"Cole , J. R. , Pence , T. , Cummings , J. , & Baker , E. ( 2019 ). Gamifying security awareness: A new prototype. Paper presented at the International Conference on Human-Computer Interaction . Cole, J. R., Pence, T., Cummings, J., & Baker, E. (2019). Gamifying security awareness: A new prototype. Paper presented at the International Conference on Human-Computer Interaction."},{"key":"e_1_2_1_33_1","doi-asserted-by":"publisher","DOI":"10.1016\/j.cose.2006.10.005"},{"key":"e_1_2_1_34_1","doi-asserted-by":"publisher","DOI":"10.1007\/0-387-33406-8_37"},{"key":"e_1_2_1_35_1","volume-title":"Information security training --Lessons learned along the trail. Paper presented at the ACM SIGUCCS User Services Conference","author":"Cooper M.","year":"2008","unstructured":"Cooper , M. ( 2008 ). Information security training --Lessons learned along the trail. Paper presented at the ACM SIGUCCS User Services Conference . Cooper, M. (2008). Information security training --Lessons learned along the trail. Paper presented at the ACM SIGUCCS User Services Conference."},{"key":"e_1_2_1_36_1","doi-asserted-by":"publisher","DOI":"10.1108\/03055720010803961"},{"key":"e_1_2_1_37_1","volume-title":"15 alarming cyber security facts and stats. https:\/\/www.cybintsolutions.com\/cyber-security-facts-stats\/","author":"Cybint","year":"2020","unstructured":"Cybint . ( 2020 ). 15 alarming cyber security facts and stats. https:\/\/www.cybintsolutions.com\/cyber-security-facts-stats\/ Cybint. (2020). 15 alarming cyber security facts and stats. https:\/\/www.cybintsolutions.com\/cyber-security-facts-stats\/"},{"key":"e_1_2_1_38_1","doi-asserted-by":"publisher","DOI":"10.1287\/isre.1070.0160"},{"key":"e_1_2_1_39_1","volume-title":"Why Johnny doesn't use two factor a two-phase usability study of the FIDO U2F security key. Paper presented at the International Conference on Financial Cryptography and Data Security","author":"Das S.","year":"2018","unstructured":"Das , S. , Dingman , A. , & Camp , L. J. ( 2018 ). Why Johnny doesn't use two factor a two-phase usability study of the FIDO U2F security key. Paper presented at the International Conference on Financial Cryptography and Data Security . Das, S., Dingman, A., & Camp, L. J. (2018). Why Johnny doesn't use two factor a two-phase usability study of the FIDO U2F security key. Paper presented at the International Conference on Financial Cryptography and Data Security."},{"key":"e_1_2_1_40_1","doi-asserted-by":"publisher","DOI":"10.2307\/249008"},{"issue":"6","key":"e_1_2_1_41_1","first-page":"39","article-title":"The ten commandments of information security awareness training","volume":"11","author":"Desman M. B.","year":"2003","unstructured":"Desman , M. B. ( 2003 ). The ten commandments of information security awareness training . Information Security Journal: A Global Perspective , 11 ( 6 ), 39 -- 44 . Desman, M. B. (2003). The ten commandments of information security awareness training. Information Security Journal: A Global Perspective, 11(6), 39--44.","journal-title":"Information Security Journal: A Global Perspective"},{"key":"e_1_2_1_42_1","doi-asserted-by":"publisher","DOI":"10.1080\/0960085X.2020.1797546"},{"key":"e_1_2_1_43_1","volume-title":"Protection motivation driven security learning. Paper presented at the 20th Americas Conference on Information Systems","author":"Ding Y.","year":"2014","unstructured":"Ding , Y. , Meso , P. , & Xu , S. ( 2014 ). Protection motivation driven security learning. Paper presented at the 20th Americas Conference on Information Systems . Ding, Y., Meso, P., & Xu, S. (2014). Protection motivation driven security learning. Paper presented at the 20th Americas Conference on Information Systems."},{"key":"e_1_2_1_44_1","volume-title":"Cyber security awareness initiatives in South Africa: A synergy approach. Paper presented at the 7th International Conference on Information Warfare and Security","author":"Dlamini Z.","year":"2012","unstructured":"Dlamini , Z. , & Modise , M. ( 2012 ). Cyber security awareness initiatives in South Africa: A synergy approach. Paper presented at the 7th International Conference on Information Warfare and Security . Dlamini, Z., & Modise, M. (2012). Cyber security awareness initiatives in South Africa: A synergy approach. Paper presented at the 7th International Conference on Information Warfare and Security."},{"key":"e_1_2_1_45_1","doi-asserted-by":"publisher","DOI":"10.1016\/j.cose.2006.10.009"},{"key":"e_1_2_1_46_1","doi-asserted-by":"publisher","DOI":"10.1007\/0-387-33406-8_41"},{"key":"e_1_2_1_47_1","doi-asserted-by":"publisher","DOI":"10.1016\/j.ijinfomgt.2019.102056"},{"key":"e_1_2_1_48_1","volume-title":"Improving phishing awareness in the United States Department of Defense. Paper presented at the European Conference on Cyber Warfare and Security","author":"Dukarm C.","year":"2019","unstructured":"Dukarm , C. , Dill , R. , & Reith , M. ( 2019 ). Improving phishing awareness in the United States Department of Defense. Paper presented at the European Conference on Cyber Warfare and Security . Dukarm, C., Dill, R., & Reith, M. (2019). Improving phishing awareness in the United States Department of Defense. Paper presented at the European Conference on Cyber Warfare and Security."},{"key":"e_1_2_1_49_1","volume-title":"The top types of cybersecurity attacks of","author":"EC-Council","year":"2019","unstructured":"EC-Council . ( 2019 ). The top types of cybersecurity attacks of 2019, till date. https:\/\/blog.eccouncil.org\/the-top-types-of-cybersecurity-attacks-of-2019-till-date\/ EC-Council. (2019). The top types of cybersecurity attacks of 2019, till date. https:\/\/blog.eccouncil.org\/the-top-types-of-cybersecurity-attacks-of-2019-till-date\/"},{"key":"e_1_2_1_50_1","doi-asserted-by":"publisher","DOI":"10.1016\/j.istr.2010.05.002"},{"key":"e_1_2_1_51_1","volume-title":"Man and Cybernetics Information Assurance Workshop.","author":"Endicott-Popovsky B.","year":"2005","unstructured":"Endicott-Popovsky , B. , Orton , I. , Bailey , K. , & Frincke , D. ( 2005 ). Community security awareness training. Paper presented at the 6th Annual IEEE System , Man and Cybernetics Information Assurance Workshop. Endicott-Popovsky, B., Orton, I., Bailey, K., & Frincke, D. (2005). Community security awareness training. Paper presented at the 6th Annual IEEE System, Man and Cybernetics Information Assurance Workshop."},{"key":"e_1_2_1_52_1","doi-asserted-by":"publisher","DOI":"10.1002\/sec.1657"},{"key":"e_1_2_1_53_1","doi-asserted-by":"publisher","DOI":"10.5555\/1134533.1134574"},{"key":"e_1_2_1_54_1","volume-title":"Mediterranean and Middle Eastern Conference on Information Systems.","author":"Figueroa N.","year":"2015","unstructured":"Figueroa , N. , & Ayyagari , R. ( 2015 ). Training users on information security: Evidence from Java applets. Paper presented at the 12th European , Mediterranean and Middle Eastern Conference on Information Systems. Figueroa, N., & Ayyagari, R. (2015). Training users on information security: Evidence from Java applets. Paper presented at the 12th European, Mediterranean and Middle Eastern Conference on Information Systems."},{"key":"e_1_2_1_55_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-0-387-35694-5_26"},{"key":"e_1_2_1_56_1","doi-asserted-by":"publisher","DOI":"10.14569\/IJACSA.2017.080226"},{"key":"e_1_2_1_57_1","volume-title":"Gamification of information security awareness and training. Paper presented at the 3rd International Conference on Information Systems Security and Privacy","author":"Gjertsen E. G. B.","year":"2017","unstructured":"Gjertsen , E. G. B. , Gj\u00e6re , E. A. , Bartnes , M. , & Flores , W. R. ( 2017 ). Gamification of information security awareness and training. Paper presented at the 3rd International Conference on Information Systems Security and Privacy . Gjertsen, E. G. B., Gj\u00e6re, E. A., Bartnes, M., & Flores, W. R. (2017). Gamification of information security awareness and training. Paper presented at the 3rd International Conference on Information Systems Security and Privacy."},{"key":"e_1_2_1_58_1","volume-title":"Phishy -- A serious game to train enterprise users on phishing awareness. Paper presented at the 2018 Annual Symposium on Computer-Human Interaction","author":"Gokul C. J.","year":"2018","unstructured":"Gokul , C. J. , Pandit , S. , Vaddepalli , S. , Tupsamudre , H. , Banahatti , V. , & Lodha , S. ( 2018 ). Phishy -- A serious game to train enterprise users on phishing awareness. Paper presented at the 2018 Annual Symposium on Computer-Human Interaction . Gokul, C. J., Pandit, S., Vaddepalli, S., Tupsamudre, H., Banahatti, V., & Lodha, S. (2018). Phishy -- A serious game to train enterprise users on phishing awareness. Paper presented at the 2018 Annual Symposium on Computer-Human Interaction."},{"key":"e_1_2_1_59_1","volume-title":"CASSIS -- Computer-based academy for security and safety in information systems. Paper presented at the 2nd International Conference on Availability, Reliability and Security","author":"Goluch G.","year":"2007","unstructured":"Goluch , G. , Ekelhart , A. , Fenz , S. , Jakoubi , S. , Riedl , B. , & Tjoa , S. ( 2007 ). CASSIS -- Computer-based academy for security and safety in information systems. Paper presented at the 2nd International Conference on Availability, Reliability and Security . Goluch, G., Ekelhart, A., Fenz, S., Jakoubi, S., Riedl, B., & Tjoa, S. (2007). CASSIS -- Computer-based academy for security and safety in information systems. Paper presented at the 2nd International Conference on Availability, Reliability and Security."},{"key":"e_1_2_1_60_1","doi-asserted-by":"publisher","DOI":"10.23919\/SAIEE.2013.8531867"},{"key":"e_1_2_1_61_1","volume-title":"Human factors in cybersecurity: Examining the link between Internet addiction, impulsivity, attitudes towards cybersecurity, and risky cybersecurity behaviours. Heliyon, 3(7)","author":"Hadlington L.","year":"2017","unstructured":"Hadlington , L. ( 2017 ). Human factors in cybersecurity: Examining the link between Internet addiction, impulsivity, attitudes towards cybersecurity, and risky cybersecurity behaviours. Heliyon, 3(7) . Hadlington, L. (2017). Human factors in cybersecurity: Examining the link between Internet addiction, impulsivity, attitudes towards cybersecurity, and risky cybersecurity behaviours. Heliyon, 3(7)."},{"key":"e_1_2_1_62_1","doi-asserted-by":"publisher","DOI":"10.1108\/09685220911006687"},{"key":"e_1_2_1_63_1","doi-asserted-by":"publisher","DOI":"10.1201\/1086\/43316.10.3.20010701\/31727.6"},{"key":"e_1_2_1_64_1","volume-title":"A user-centered approach to phishing susceptibility: The role of a suspicious personality in protecting against phishing. Paper presented at the 49th Hawaii International Conference on System Sciences","author":"Harrison B.","year":"2016","unstructured":"Harrison , B. , Vishwanath , A. , & Rao , R. ( 2016 ). A user-centered approach to phishing susceptibility: The role of a suspicious personality in protecting against phishing. Paper presented at the 49th Hawaii International Conference on System Sciences . Harrison, B., Vishwanath, A., & Rao, R. (2016). A user-centered approach to phishing susceptibility: The role of a suspicious personality in protecting against phishing. Paper presented at the 49th Hawaii International Conference on System Sciences."},{"key":"e_1_2_1_65_1","volume-title":"Riskio: A serious game for cyber security awareness and education. Computers & Security, 95","author":"Harta S.","year":"2020","unstructured":"Harta , S. , Margheri , A. , Paci , F. , & Sassonea , V. ( 2020 ). Riskio: A serious game for cyber security awareness and education. Computers & Security, 95 . Harta, S., Margheri, A., Paci, F., & Sassonea, V. (2020). Riskio: A serious game for cyber security awareness and education. Computers & Security, 95."},{"key":"e_1_2_1_66_1","volume-title":"Proceedings of the 6th International Conference on Computing and Informatics: Embracing Eco-Friendly Computing.","author":"Hashim A. S.","year":"2017","unstructured":"Hashim , A. S. , & Mahamad , S. ( 2017 ). Factors affecting awareness on information security in Internet banking among Universiti Teknologi Petronas (UTP) students . Proceedings of the 6th International Conference on Computing and Informatics: Embracing Eco-Friendly Computing. Hashim, A. S., & Mahamad, S. (2017). Factors affecting awareness on information security in Internet banking among Universiti Teknologi Petronas (UTP) students. Proceedings of the 6th International Conference on Computing and Informatics: Embracing Eco-Friendly Computing."},{"key":"e_1_2_1_67_1","doi-asserted-by":"publisher","DOI":"10.1016\/j.cose.2017.10.008"},{"key":"e_1_2_1_68_1","doi-asserted-by":"publisher","DOI":"10.1108\/JIC-05-2019-0112"},{"key":"e_1_2_1_69_1","doi-asserted-by":"publisher","DOI":"10.1080\/10919392.2019.1611528"},{"key":"e_1_2_1_70_1","volume-title":"A constructive approach to information systems security training: An action research experience. Paper presented at the 14th Americas Conference on Information Systems","author":"Heikka J.","year":"2008","unstructured":"Heikka , J. ( 2008 ). A constructive approach to information systems security training: An action research experience. Paper presented at the 14th Americas Conference on Information Systems . Heikka, J. (2008). A constructive approach to information systems security training: An action research experience. Paper presented at the 14th Americas Conference on Information Systems."},{"key":"e_1_2_1_71_1","doi-asserted-by":"publisher","DOI":"10.4135\/9781412985451"},{"key":"e_1_2_1_72_1","doi-asserted-by":"publisher","DOI":"10.1177\/1833358317722038"},{"key":"e_1_2_1_73_1","doi-asserted-by":"publisher","DOI":"10.25300\/misq\/2014\/38.1.01"},{"key":"e_1_2_1_74_1","doi-asserted-by":"publisher","DOI":"10.2307\/25148625"},{"key":"e_1_2_1_75_1","volume-title":"An anti-phishing training system for security awareness and education considering prevention of information leakage. Paper presented at the 5th International Conference on Information Management","author":"Higashino M.","year":"2019","unstructured":"Higashino , M. , Kawato , T. , Ohmori , M. , & Kawamura , T. ( 2019 ). An anti-phishing training system for security awareness and education considering prevention of information leakage. Paper presented at the 5th International Conference on Information Management . Higashino, M., Kawato, T., Ohmori, M., & Kawamura, T. (2019). An anti-phishing training system for security awareness and education considering prevention of information leakage. Paper presented at the 5th International Conference on Information Management."},{"key":"e_1_2_1_76_1","series-title":"Vol. 2","volume-title":"Cultures and organizations: Software of the mind","author":"Hofstede G. H.","year":"2005","unstructured":"Hofstede , G. H. , Hofstede , G. J. , & Minkov , M. ( 2005 ). Cultures and organizations: Software of the mind ( Vol. 2 ) . McGraw-Hill . Hofstede, G. H., Hofstede, G. J., & Minkov, M. (2005). Cultures and organizations: Software of the mind (Vol. 2). McGraw-Hill."},{"key":"e_1_2_1_77_1","volume-title":"An effective immersive cyber security awareness learning platform for businesses in the hospitality sector. Paper presented at the 25th International Requirements Engineering Conference Workshops","author":"Holdsworth J.","year":"2017","unstructured":"Holdsworth , J. , & Apeh , E. ( 2017 ). An effective immersive cyber security awareness learning platform for businesses in the hospitality sector. Paper presented at the 25th International Requirements Engineering Conference Workshops . Holdsworth, J., & Apeh, E. (2017). An effective immersive cyber security awareness learning platform for businesses in the hospitality sector. Paper presented at the 25th International Requirements Engineering Conference Workshops."},{"key":"e_1_2_1_78_1","volume-title":"The impact of SETA event attributes on employees' security-related intentions: An event system theory perspective. Computers & Security, 109","author":"Hu S.","year":"2021","unstructured":"Hu , S. , Hsu , C. , & Zhou , Z. ( 2021 a). The impact of SETA event attributes on employees' security-related intentions: An event system theory perspective. Computers & Security, 109 . Hu, S., Hsu, C., & Zhou, Z. (2021a). The impact of SETA event attributes on employees' security-related intentions: An event system theory perspective. Computers & Security, 109."},{"key":"e_1_2_1_79_1","article-title":"Security education, training, and awareness programs: Literature review","author":"Hu S.","year":"2021","unstructured":"Hu , S. , Hsu , C. , & Zhou , Z. ( 2021 b). Security education, training, and awareness programs: Literature review . Journal of Computer Information Systems, 1--13. Hu, S., Hsu, C., & Zhou, Z. (2021b). Security education, training, and awareness programs: Literature review. Journal of Computer Information Systems, 1--13.","journal-title":"Journal of Computer Information Systems, 1--13."},{"key":"e_1_2_1_80_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-319-66715-7_19"},{"key":"e_1_2_1_81_1","doi-asserted-by":"publisher","DOI":"10.1080\/0144929X.2011.632650"},{"key":"e_1_2_1_82_1","volume-title":"Passworld: A serious game to promote password awareness and diversity in an enterprise. Paper presented at the 16th Symposium on Usable Privacy and Security","author":"Jayakrishnan G. C.","year":"2020","unstructured":"Jayakrishnan , G. C. , Sirigireddy , G. R. , Vaddepalli , S. , Banahatti , V. , Lodha , S. P. , & Pandit , S. S. ( 2020 ). Passworld: A serious game to promote password awareness and diversity in an enterprise. Paper presented at the 16th Symposium on Usable Privacy and Security . Jayakrishnan, G. C., Sirigireddy, G. R., Vaddepalli, S., Banahatti, V., Lodha, S. P., & Pandit, S. S. (2020). Passworld: A serious game to promote password awareness and diversity in an enterprise. Paper presented at the 16th Symposium on Usable Privacy and Security."},{"key":"e_1_2_1_83_1","unstructured":"Jenkins J. L. & Durcikova A. (2013). What I shouldn't have done that?: The influence of training and just-in-time reminders on secure behavior. Paper presented at the International Conference on Information Systems: Reshaping Society Through Information Systems Design.  Jenkins J. L. & Durcikova A. (2013). What I shouldn't have done that?: The influence of training and just-in-time reminders on secure behavior. Paper presented at the International Conference on Information Systems: Reshaping Society Through Information Systems Design."},{"key":"e_1_2_1_84_1","doi-asserted-by":"publisher","DOI":"10.1080\/07421222.2017.1334499"},{"key":"e_1_2_1_85_1","volume-title":"Game based cybersecurity training for high school students. Paper presented at the 49th ACM Technical Symposium on Computer Science Education","author":"Jin G.","year":"2018","unstructured":"Jin , G. , Tu , M. , Kim , T.-H. , Heffron , J. , & White , J. ( 2018 ). Game based cybersecurity training for high school students. Paper presented at the 49th ACM Technical Symposium on Computer Science Education . Jin, G., Tu, M., Kim, T.-H., Heffron, J., & White, J. (2018). Game based cybersecurity training for high school students. Paper presented at the 49th ACM Technical Symposium on Computer Science Education."},{"issue":"4","key":"e_1_2_1_86_1","first-page":"351","article-title":"Human aspects of cyber security: Behaviour or culture change","volume":"1","author":"Joinson A.","year":"2018","unstructured":"Joinson , A. , & van Steen , T. ( 2018 ). Human aspects of cyber security: Behaviour or culture change ? Cyber Security: A Peer-Reviewed Journal , 1 ( 4 ), 351 -- 360 . Joinson, A., & van Steen, T. (2018). Human aspects of cyber security: Behaviour or culture change? Cyber Security: A Peer-Reviewed Journal, 1(4), 351--360.","journal-title":"Cyber Security: A Peer-Reviewed Journal"},{"key":"e_1_2_1_87_1","volume-title":"Usability and security perceptions of implicit authentication: Convenient, secure, sometimes annoying. Paper presented at the 11th Symposium on Usable Privacy and Security","author":"Khan H.","year":"2015","unstructured":"Khan , H. , Hengartner , U. , & Vogel , D. ( 2015 ). Usability and security perceptions of implicit authentication: Convenient, secure, sometimes annoying. Paper presented at the 11th Symposium on Usable Privacy and Security . Khan, H., Hengartner, U., & Vogel, D. (2015). Usability and security perceptions of implicit authentication: Convenient, secure, sometimes annoying. Paper presented at the 11th Symposium on Usable Privacy and Security."},{"issue":"1","key":"e_1_2_1_88_1","first-page":"99","article-title":"Effect of information security training and services on employees' compliance to security policies","volume":"25","author":"Kim B.-r.","year":"2018","unstructured":"Kim , B.-r. , Lee , J.-W. , & Kim , B.-S. ( 2018 ). Effect of information security training and services on employees' compliance to security policies . Informatization Policy , 25 ( 1 ), 99 -- 114 . Kim, B.-r., Lee, J.-W., & Kim, B.-S. (2018). Effect of information security training and services on employees' compliance to security policies. Informatization Policy, 25(1), 99--114.","journal-title":"Informatization Policy"},{"key":"e_1_2_1_89_1","doi-asserted-by":"publisher","DOI":"10.1108\/IMCS-01-2013-0005"},{"key":"e_1_2_1_90_1","volume-title":"SAWIT-security awareness improvement tool in the workplace. Applied Sciences (Switzerland), 10(9)","author":"Kova","year":"2020","unstructured":"Kova ?evi?, A., & Radenkovi ?, S. D. ( 2020 ). SAWIT-security awareness improvement tool in the workplace. Applied Sciences (Switzerland), 10(9) . Kova?evi?, A., & Radenkovi?, S. D. (2020). SAWIT-security awareness improvement tool in the workplace. Applied Sciences (Switzerland), 10(9)."},{"key":"e_1_2_1_91_1","volume-title":"Online fraud defence by context based micro training. Paper presented at the 9th International Symposium on Human Aspects of Information Security and Assurance","author":"K\u00e4vrestad J.","year":"2015","unstructured":"K\u00e4vrestad , J. , & Nohlberg , M. ( 2015 ). Online fraud defence by context based micro training. Paper presented at the 9th International Symposium on Human Aspects of Information Security and Assurance . K\u00e4vrestad, J., & Nohlberg, M. (2015). Online fraud defence by context based micro training. Paper presented at the 9th International Symposium on Human Aspects of Information Security and Assurance."},{"key":"e_1_2_1_92_1","volume-title":"Users perception of using CBMT for information security training. Paper presented at the 13th International Symposium on Human Aspects of Information Security & Assurance","author":"K\u00e4vrestad J.","year":"2019","unstructured":"K\u00e4vrestad , J. , Sk\u00e4rg\u00e5rd , M. , & Nohlberg , M. ( 2019 ). Users perception of using CBMT for information security training. Paper presented at the 13th International Symposium on Human Aspects of Information Security & Assurance . K\u00e4vrestad, J., Sk\u00e4rg\u00e5rd, M., & Nohlberg, M. (2019). Users perception of using CBMT for information security training. Paper presented at the 13th International Symposium on Human Aspects of Information Security & Assurance."},{"key":"e_1_2_1_93_1","volume-title":"Assisting users to create stronger passwords using ContextBased MicroTraining. Paper presented at the IFIP International Conference on ICT Systems Security and Privacy Protection","author":"K\u00e4vrestad J.","year":"2020","unstructured":"K\u00e4vrestad , J. , & Nohlberg , M. ( 2020 ). Assisting users to create stronger passwords using ContextBased MicroTraining. Paper presented at the IFIP International Conference on ICT Systems Security and Privacy Protection . K\u00e4vrestad, J., & Nohlberg, M. (2020). Assisting users to create stronger passwords using ContextBased MicroTraining. Paper presented at the IFIP International Conference on ICT Systems Security and Privacy Protection."},{"key":"e_1_2_1_94_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-030-57404-8_6"},{"key":"e_1_2_1_95_1","volume-title":"Towards an automated security awareness system in a virtualized environment. Paper presented at the 11th European Conference on Information Warfare and Security","author":"Labuschagne W. A.","year":"2012","unstructured":"Labuschagne , W. A. , & Eloff , M. ( 2012 ). Towards an automated security awareness system in a virtualized environment. Paper presented at the 11th European Conference on Information Warfare and Security . Labuschagne, W. A., & Eloff, M. (2012). Towards an automated security awareness system in a virtualized environment. Paper presented at the 11th European Conference on Information Warfare and Security."},{"key":"e_1_2_1_96_1","volume-title":"The effectiveness of online gaming as part of a security awareness program. Paper presented at the 13th European Conference on Cyber Warfare and Security","author":"Labuschagne W. A.","year":"2014","unstructured":"Labuschagne , W. A. , & Eloff , M. ( 2014 ). The effectiveness of online gaming as part of a security awareness program. Paper presented at the 13th European Conference on Cyber Warfare and Security . Labuschagne, W. A., & Eloff, M. (2014). The effectiveness of online gaming as part of a security awareness program. Paper presented at the 13th European Conference on Cyber Warfare and Security."},{"key":"e_1_2_1_97_1","volume-title":"How effective is anti-phishing training for children? Paper presented at the 13th Symposium on Usable Privacy and Security","author":"Lastdrager E.","year":"2019","unstructured":"Lastdrager , E. , Gallardo , I. C. , Hartel , P. , & Junger , M. ( 2019 ). How effective is anti-phishing training for children? Paper presented at the 13th Symposium on Usable Privacy and Security . Lastdrager, E., Gallardo, I. C., Hartel, P., & Junger, M. (2019). How effective is anti-phishing training for children? Paper presented at the 13th Symposium on Usable Privacy and Security."},{"key":"e_1_2_1_98_1","doi-asserted-by":"publisher","DOI":"10.1109\/CYCON.2015.7158478"},{"key":"e_1_2_1_99_1","first-page":"1957","article-title":"Result and effectiveness of malicious e-mail response training in a hospital","volume":"264","author":"Lee H. S.","year":"2019","unstructured":"Lee , H. S. , Jeong , D. N. , Lee , S. I. , Lee , S. H. , Kim , K. H. , Lee , H. Y. , Cho , H. J. , Choi , S. W. , & Ko , T. ( 2019 ). Result and effectiveness of malicious e-mail response training in a hospital . Studies in Health Technology and Informatics , 264 , 1957 . Lee, H. S., Jeong, D. N., Lee, S. I., Lee, S. H., Kim, K. H., Lee, H. Y., Cho, H. J., Choi, S. W., & Ko, T. (2019). Result and effectiveness of malicious e-mail response training in a hospital. Studies in Health Technology and Informatics, 264, 1957.","journal-title":"Studies in Health Technology and Informatics"},{"issue":"1","key":"e_1_2_1_100_1","first-page":"50","article-title":"The technology acceptance model: Past, present, and future","volume":"12","author":"Lee Y.","year":"2003","unstructured":"Lee , Y. , Kozar , K. A. , & Larsen , K. R. ( 2003 ). The technology acceptance model: Past, present, and future . Communications of the Association for Information Systems , 12 ( 1 ), 50 . Lee, Y., Kozar, K. A., & Larsen, K. R. (2003). The technology acceptance model: Past, present, and future. Communications of the Association for Information Systems, 12(1), 50.","journal-title":"Communications of the Association for Information Systems"},{"key":"e_1_2_1_101_1","volume-title":"A rollout strategy for cybersecurity awareness campaigns. Paper presented at the 14th International Conference on Cyber Warfare and Security","author":"Mashiane T.","year":"2019","unstructured":"Mashiane , T. , Dlamini , Z. , & Mahlangu , T. ( 2019 ). A rollout strategy for cybersecurity awareness campaigns. Paper presented at the 14th International Conference on Cyber Warfare and Security . Mashiane, T., Dlamini, Z., & Mahlangu, T. (2019). A rollout strategy for cybersecurity awareness campaigns. Paper presented at the 14th International Conference on Cyber Warfare and Security."},{"key":"e_1_2_1_102_1","volume-title":"Cybersecurity behaviour: A conceptual taxonomy. Paper presented at the IFIP International Conference on Information Security Theory and Practice","author":"Mashiane T.","year":"2018","unstructured":"Mashiane , T. , & Kritzinger , E. ( 2018 ). Cybersecurity behaviour: A conceptual taxonomy. Paper presented at the IFIP International Conference on Information Security Theory and Practice . Mashiane, T., & Kritzinger, E. (2018). Cybersecurity behaviour: A conceptual taxonomy. Paper presented at the IFIP International Conference on Information Security Theory and Practice."},{"key":"e_1_2_1_103_1","doi-asserted-by":"publisher","DOI":"10.1145\/1027802.1027882"},{"key":"e_1_2_1_104_1","doi-asserted-by":"publisher","DOI":"10.1080\/15332861.2010.487415"},{"key":"e_1_2_1_105_1","volume-title":"Avoid phishing traps. Paper presented at the ACM SIGUCCS User Services Conference","author":"Moul K. A.","year":"2019","unstructured":"Moul , K. A. ( 2019 ). Avoid phishing traps. Paper presented at the ACM SIGUCCS User Services Conference . Moul, K. A. (2019). Avoid phishing traps. Paper presented at the ACM SIGUCCS User Services Conference."},{"key":"e_1_2_1_106_1","volume-title":"An overview of the Eastern Cape eSkills Colab training and awareness programmes. Paper presented at the 2019 IST-Africa Week Conference","author":"Nogwina M.","year":"2019","unstructured":"Nogwina , M. , Gumbo , S. , & Ngqulu , N. ( 2019 ). An overview of the Eastern Cape eSkills Colab training and awareness programmes. Paper presented at the 2019 IST-Africa Week Conference . Nogwina, M., Gumbo, S., & Ngqulu, N. (2019). An overview of the Eastern Cape eSkills Colab training and awareness programmes. Paper presented at the 2019 IST-Africa Week Conference."},{"key":"e_1_2_1_107_1","doi-asserted-by":"publisher","DOI":"10.1109\/CEEC.2015.7332702"},{"key":"e_1_2_1_108_1","volume-title":"Outline of a design science research process. Paper presented at the 4th International Conference on Design Science Research in Information Systems and Technology","author":"Offermann P.","year":"2009","unstructured":"Offermann , P. , Levina , O. , Sch\u00f6nherr , M. , & Bub , U. ( 2009 ). Outline of a design science research process. Paper presented at the 4th International Conference on Design Science Research in Information Systems and Technology . Offermann, P., Levina, O., Sch\u00f6nherr, M., & Bub, U. (2009). Outline of a design science research process. Paper presented at the 4th International Conference on Design Science Research in Information Systems and Technology."},{"key":"e_1_2_1_109_1","volume-title":"An empirical study of cultural dimensions and cybersecurity development. Paper presented at the 2017 IEEE 5th International Conference on Future Internet of Things and Cloud","author":"Onumo A.","year":"2017","unstructured":"Onumo , A. , Cullen , A. , & Ullah-Awan , I. ( 2017 ). An empirical study of cultural dimensions and cybersecurity development. Paper presented at the 2017 IEEE 5th International Conference on Future Internet of Things and Cloud . Onumo, A., Cullen, A., & Ullah-Awan, I. (2017). An empirical study of cultural dimensions and cybersecurity development. Paper presented at the 2017 IEEE 5th International Conference on Future Internet of Things and Cloud."},{"key":"e_1_2_1_110_1","doi-asserted-by":"crossref","unstructured":"Oroszi E. D. (2019). Security awareness escape room -- A possible new method in improving security awareness of users. Paper presented at the 2019 International Conference on Cyber Situational Awareness Data Analytics and Assessment.  Oroszi E. D. (2019). Security awareness escape room -- A possible new method in improving security awareness of users. Paper presented at the 2019 International Conference on Cyber Situational Awareness Data Analytics and Assessment.","DOI":"10.1109\/CyberSA.2019.8899715"},{"key":"e_1_2_1_111_1","volume-title":"F. Lau & C","author":"Par\u00e9 G.","year":"2017","unstructured":"Par\u00e9 , G. , & Kitsiou , S. ( 2017 ). Methods for literature reviews . In F. Lau & C . Kuziemsky (Eds.), Handbook of eHealth evaluation: An evidence-based approach. University of Victoria . Par\u00e9, G., & Kitsiou, S. (2017). Methods for literature reviews. In F. Lau & C. Kuziemsky (Eds.), Handbook of eHealth evaluation: An evidence-based approach. University of Victoria."},{"key":"e_1_2_1_112_1","unstructured":"Parsons K. Butavicius M. Lillie M. Calic D. McCormac A. & Pattinson M. (2018). Which individual cultural organisational and interventional factors explain phishing resilience. Paper presented at the 12th International Symposium on Human Aspects of Information Security & Assurance.  Parsons K. Butavicius M. Lillie M. Calic D. McCormac A. & Pattinson M. (2018). Which individual cultural organisational and interventional factors explain phishing resilience. Paper presented at the 12th International Symposium on Human Aspects of Information Security & Assurance."},{"key":"e_1_2_1_113_1","doi-asserted-by":"publisher","DOI":"10.2753\/MIS0742-1222240302"},{"key":"e_1_2_1_114_1","doi-asserted-by":"publisher","DOI":"10.1057\/ejis.2008.15"},{"key":"e_1_2_1_115_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-030-65610-2_9"},{"key":"e_1_2_1_116_1","doi-asserted-by":"publisher","DOI":"10.1016\/S1361-3723(06)70355-4"},{"key":"e_1_2_1_117_1","doi-asserted-by":"publisher","DOI":"10.5555\/2017496.2017502"},{"key":"e_1_2_1_118_1","doi-asserted-by":"publisher","DOI":"10.4172\/2162-6359.1000403"},{"key":"e_1_2_1_119_1","volume-title":"A systematic review of the technology acceptance model in health informatics. Applied Clinical Informatics, 9(3)","author":"Rahimi B.","year":"2018","unstructured":"Rahimi , B. , Nadri , H. , Afshar , H. L. , & Timpka , T. ( 2018 ). A systematic review of the technology acceptance model in health informatics. Applied Clinical Informatics, 9(3) . Rahimi, B., Nadri, H., Afshar, H. L., & Timpka, T. (2018). A systematic review of the technology acceptance model in health informatics. Applied Clinical Informatics, 9(3)."},{"key":"e_1_2_1_120_1","volume-title":"Human factors in cybersecurity: A scoping review. Paper presented at the 12th International Conference on Advances in Information Technology","author":"Rahman T.","year":"2021","unstructured":"Rahman , T. , Rohan , R. , Pal , D. , & Kanthamanon , P. ( 2021 ). Human factors in cybersecurity: A scoping review. Paper presented at the 12th International Conference on Advances in Information Technology . Rahman, T., Rohan, R., Pal, D., & Kanthamanon, P. (2021). Human factors in cybersecurity: A scoping review. Paper presented at the 12th International Conference on Advances in Information Technology."},{"key":"e_1_2_1_121_1","volume-title":"?Get a red-hot poker and open up my eyes, it's so boring\": Employee perceptions of cybersecurity training. Computers & Security, 106","author":"Reeves A.","year":"2021","unstructured":"Reeves , A. , Calic , D. , & Delfabbro , P. ( 2021 ). ?Get a red-hot poker and open up my eyes, it's so boring\": Employee perceptions of cybersecurity training. Computers & Security, 106 . Reeves, A., Calic, D., & Delfabbro, P. (2021). ?Get a red-hot poker and open up my eyes, it's so boring\": Employee perceptions of cybersecurity training. Computers & Security, 106."},{"key":"e_1_2_1_122_1","volume-title":"An investigation of phishing awareness and education over time: When and how to best remind users. Paper presented at the 16th Symposium on Usable Privacy and Security","author":"Reinheimer B.","year":"2020","unstructured":"Reinheimer , B. , Aldag , L. , Mayer , P. , Mossano , M. , Duezguen , R. , Lofthouse , B. , von Landesberger , T. , & Volkamer , M. ( 2020 ). An investigation of phishing awareness and education over time: When and how to best remind users. Paper presented at the 16th Symposium on Usable Privacy and Security . Reinheimer, B., Aldag, L., Mayer, P., Mossano, M., Duezguen, R., Lofthouse, B., von Landesberger, T., & Volkamer, M. (2020). An investigation of phishing awareness and education over time: When and how to best remind users. Paper presented at the 16th Symposium on Usable Privacy and Security."},{"key":"e_1_2_1_123_1","doi-asserted-by":"publisher","DOI":"10.1016\/j.ijhcs.2018.05.011"},{"key":"e_1_2_1_124_1","doi-asserted-by":"publisher","DOI":"10.1016\/j.cose.2015.05.012"},{"key":"e_1_2_1_125_1","doi-asserted-by":"publisher","DOI":"10.1016\/j.chb.2015.12.037"},{"key":"e_1_2_1_126_1","volume-title":"Elementary survey sampling. Cengage Learning","author":"Scheaffer R. L.","year":"2011","unstructured":"Scheaffer , R. L. , Mendenhall III, W. , Ott , R. L. , & Gerow , K. G. ( 2011 ). Elementary survey sampling. Cengage Learning . Scheaffer, R. L., Mendenhall III, W., Ott, R. L., & Gerow, K. G. (2011). Elementary survey sampling. Cengage Learning."},{"key":"e_1_2_1_127_1","doi-asserted-by":"publisher","DOI":"10.4018\/IJEPR.2019070104"},{"key":"e_1_2_1_128_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-030-60347-2_13"},{"key":"e_1_2_1_129_1","volume-title":"The impact of information richness on information security awareness training effectiveness. Computers & Education, 52(1)","author":"Shaw R. S.","year":"2009","unstructured":"Shaw , R. S. , Chen , C. C. , Harris , A. L. , & Huang , H. J. ( 2009 ). The impact of information richness on information security awareness training effectiveness. Computers & Education, 52(1) . Shaw, R. S., Chen, C. C., Harris, A. L., & Huang, H. J. (2009). The impact of information richness on information security awareness training effectiveness. Computers & Education, 52(1)."},{"key":"e_1_2_1_130_1","doi-asserted-by":"publisher","DOI":"10.4018\/jdet.2011100104"},{"key":"e_1_2_1_131_1","doi-asserted-by":"publisher","DOI":"10.1007\/s10796-009-9184-x"},{"key":"e_1_2_1_132_1","volume-title":"A conceptual foundation for organizational information security awareness. Information Management & Computer Security","author":"Siponen M.","year":"2000","unstructured":"Siponen , M. ( 2000 ). A conceptual foundation for organizational information security awareness. Information Management & Computer Security . Siponen, M. (2000). A conceptual foundation for organizational information security awareness. Information Management & Computer Security."},{"key":"e_1_2_1_133_1","doi-asserted-by":"publisher","DOI":"10.1145\/503345.503348"},{"key":"e_1_2_1_134_1","doi-asserted-by":"publisher","DOI":"10.17705\/1jais.00491"},{"key":"e_1_2_1_135_1","doi-asserted-by":"publisher","DOI":"10.1016\/j.im.2013.08.006"},{"key":"e_1_2_1_136_1","doi-asserted-by":"publisher","DOI":"10.1080\/08874417.2016.1233001"},{"key":"e_1_2_1_137_1","volume-title":"Vectors of attack. Heimdal Security. https:\/\/heimdalsecurity.com\/blog\/vectors-of-attack\/","author":"Soare B.","year":"2020","unstructured":"Soare , B. ( 2020 ). Vectors of attack. Heimdal Security. https:\/\/heimdalsecurity.com\/blog\/vectors-of-attack\/ Soare, B. (2020). Vectors of attack. Heimdal Security. https:\/\/heimdalsecurity.com\/blog\/vectors-of-attack\/"},{"key":"e_1_2_1_138_1","doi-asserted-by":"publisher","DOI":"10.1145\/3317549.3323412"},{"key":"e_1_2_1_139_1","volume-title":"What is culture? A compilation of quotations. GlobalPAD Core Concepts, 1--22","author":"Spencer-Oatey H.","year":"2012","unstructured":"Spencer-Oatey , H. , & Franklin , P. ( 2012 ). What is culture? A compilation of quotations. GlobalPAD Core Concepts, 1--22 . Spencer-Oatey, H., & Franklin, P. (2012). What is culture? A compilation of quotations. GlobalPAD Core Concepts, 1--22."},{"key":"e_1_2_1_140_1","doi-asserted-by":"publisher","DOI":"10.1108\/09685220910944759"},{"key":"e_1_2_1_141_1","doi-asserted-by":"publisher","DOI":"10.1007\/s10639-020-10155-x"},{"key":"e_1_2_1_142_1","volume-title":"Impact of security education on password change. Paper presented at the 38th International Convention on Information and Communication Technology, Electronics and Microelectronics","author":"Taneski V.","year":"2015","unstructured":"Taneski , V. , Hericko , M. , & Brumen , B. ( 2015 ). Impact of security education on password change. Paper presented at the 38th International Convention on Information and Communication Technology, Electronics and Microelectronics . Taneski, V., Hericko, M., & Brumen, B. (2015). Impact of security education on password change. Paper presented at the 38th International Convention on Information and Communication Technology, Electronics and Microelectronics."},{"key":"e_1_2_1_143_1","doi-asserted-by":"publisher","DOI":"10.1016\/S1361-3723(06)70430-4"},{"key":"e_1_2_1_144_1","volume-title":"Cyber security training a survey of serious games in cyber security. Paper presented at the 2017 IEEE Frontiers in Education Conference","author":"Tioh J. N.","year":"2017","unstructured":"Tioh , J. N. , Mina , M. , & Jacobson , D. W. ( 2017 ). Cyber security training a survey of serious games in cyber security. Paper presented at the 2017 IEEE Frontiers in Education Conference . Tioh, J. N., Mina, M., & Jacobson, D. W. (2017). Cyber security training a survey of serious games in cyber security. Paper presented at the 2017 IEEE Frontiers in Education Conference."},{"key":"e_1_2_1_145_1","volume-title":"Effectiveness of and user preferences for security awareness training methodologies. Heliyon, 5(6)","author":"Tschakert K. F.","year":"2019","unstructured":"Tschakert , K. F. , & Ngamsuriyaroj , S. ( 2019 ). Effectiveness of and user preferences for security awareness training methodologies. Heliyon, 5(6) . Tschakert, K. F., & Ngamsuriyaroj, S. (2019). Effectiveness of and user preferences for security awareness training methodologies. Heliyon, 5(6)."},{"key":"e_1_2_1_146_1","volume-title":"A password generator tool to increase users' awareness on bad password construction strategies. Paper presented at the 2018 International Symposium on Networks, Computers and Communications","author":"Tsokkis P.","year":"2018","unstructured":"Tsokkis , P. , & Stavrou , E. ( 2018 ). A password generator tool to increase users' awareness on bad password construction strategies. Paper presented at the 2018 International Symposium on Networks, Computers and Communications . Tsokkis, P., & Stavrou, E. (2018). A password generator tool to increase users' awareness on bad password construction strategies. Paper presented at the 2018 International Symposium on Networks, Computers and Communications."},{"key":"e_1_2_1_147_1","doi-asserted-by":"publisher","DOI":"10.1287\/mnsc.46.2.186.11926"},{"key":"e_1_2_1_148_1","volume-title":"Naked statistics: Stripping the dread from the data","author":"Wheelan C.","year":"2013","unstructured":"Wheelan , C. ( 2013 ). Naked statistics: Stripping the dread from the data . W. W. Norton & Company . Wheelan, C. (2013). Naked statistics: Stripping the dread from the data. W. W. Norton & Company."},{"key":"e_1_2_1_149_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-030-50439-7_10"},{"key":"e_1_2_1_150_1","volume-title":"A survey of user-centered design practice. Paper presented at the SIGCHI Conference on Human Factors in Computing Systems","author":"Vredenburg K.","year":"2002","unstructured":"Vredenburg , K. , Mao , J.-Y. , Smith , P. W. , & Carey , T. ( 2002 ). A survey of user-centered design practice. Paper presented at the SIGCHI Conference on Human Factors in Computing Systems . Vredenburg, K., Mao, J.-Y., Smith, P. W., & Carey, T. (2002). A survey of user-centered design practice. Paper presented at the SIGCHI Conference on Human Factors in Computing Systems."},{"key":"e_1_2_1_151_1","doi-asserted-by":"publisher","DOI":"10.1016\/j.cose.2004.01.012"},{"key":"e_1_2_1_152_1","volume-title":"Effects of the design of mobile security notifications and mobile app usability on users' security perceptions and continued use intention. Information & Management, 57(5)","author":"Wu D.","year":"2020","unstructured":"Wu , D. , Moody , G. D. , Zhang , J. , & Lowry , P. B. ( 2020 ). Effects of the design of mobile security notifications and mobile app usability on users' security perceptions and continued use intention. Information & Management, 57(5) . Wu, D., Moody, G. D., Zhang, J., & Lowry, P. B. (2020). Effects of the design of mobile security notifications and mobile app usability on users' security perceptions and continued use intention. Information & Management, 57(5)."},{"key":"e_1_2_1_153_1","doi-asserted-by":"publisher","DOI":"10.1177\/0018720818810942"},{"key":"e_1_2_1_154_1","volume-title":"Cyber ranges and security testbeds: Scenarios, functions, tools and architecture. Computers & Security, 88","author":"Yamin M. M.","year":"2020","unstructured":"Yamin , M. M. , Katt , B. , & Gkioulos , V. ( 2020 ). Cyber ranges and security testbeds: Scenarios, functions, tools and architecture. Computers & Security, 88 . Yamin, M. M., Katt, B., & Gkioulos, V. (2020). Cyber ranges and security testbeds: Scenarios, functions, tools and architecture. Computers & Security, 88."},{"key":"e_1_2_1_155_1","doi-asserted-by":"publisher","DOI":"10.1145\/3055305.3055310"},{"key":"e_1_2_1_156_1","doi-asserted-by":"publisher","DOI":"10.1016\/j.dss.2018.02.009"},{"key":"e_1_2_1_157_1","doi-asserted-by":"publisher","DOI":"10.1145\/3410352.3410825"},{"key":"e_1_2_1_158_1","doi-asserted-by":"publisher","DOI":"10.1016\/j.ijhcs.2019.05.005"},{"key":"e_1_2_1_159_1","doi-asserted-by":"publisher","DOI":"10.1145\/3429888"}],"container-title":["ACM SIGMIS Database: the DATABASE for Advances in Information Systems"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3631341.3631348","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/3631341.3631348","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,6,17]],"date-time":"2025-06-17T16:35:52Z","timestamp":1750178152000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3631341.3631348"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2023,10,23]]},"references-count":159,"journal-issue":{"issue":"4","published-print":{"date-parts":[[2023,10,23]]}},"alternative-id":["10.1145\/3631341.3631348"],"URL":"https:\/\/doi.org\/10.1145\/3631341.3631348","relation":{},"ISSN":["0095-0033","1532-0936"],"issn-type":[{"value":"0095-0033","type":"print"},{"value":"1532-0936","type":"electronic"}],"subject":[],"published":{"date-parts":[[2023,10,23]]},"assertion":[{"value":"2023-10-30","order":2,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}