Published April 16, 2023 | Version v1

A Competence-Based Screening of Instructional Designs in Trainings for IT-Security at the Workplace

  • 1. University of Hohenheim
  • 2. University of Göttingen
  • 3. University of Paderborn

Description

Building competences for employee behavior enhancing Information Technology Security (ITS) is crucial. While cybersecurity attacks are rising in numbers and sophistication, deficient knowledge and behaviors of employees present greater weaknesses in companies than insufficient hardware/software components such as firewalls. However, ITS trainings are time-consuming and often only temporarily effective. We address these shortcomings and model the required competences for ITS behavior in everyday work, identify their qualification needs, and recommend needs-based training programs. In this paper, we examine to which extent available ITS trainings cover the dimensions of our competence model. We pursue the question on which specific dimensions of ITS competence are addressed/omitted. Results show that especially the implication of the important dimension of justification needs to be improved.

Notes

This work was supported by the German Federal Ministry for Economics and Climate Action (Grant number 01MS20008B).

Files

Koepfer et al 2023 Conference Paper AERA.pdf

Files (246.4 kB)

Name Size Download all
md5:5583927dd70fa7021a8388567c0ecd0d
246.4 kB Preview Download