To read the full version of this content please select one of the options below:

A general morphological analysis: delineating a cyber-security culture

Noluxolo Gcaza (Centre for Research in Information and Cyber Security, Nelson Mandela Metropolitan University, Port Elizabeth, South Africa)
Rossouw von Solms (Centre for Research in Information and Cyber Security, Nelson Mandela Metropolitan University, Port Elizabeth, South Africa)
Marthie M. Grobler (Department of Defence Peace Safety and Security, Council for Scientific and Industrial Research, Pretoria, Gauteng, South Africa)
Joey Jansen van Vuuren (Department of Defence Peace Safety and Security, Council for Scientific and Industrial Research, Pretoria, Gauteng, South Africa)

Information and Computer Security

ISSN: 2056-4961

Article publication date: 10 July 2017

Abstract

Purpose

The purpose of this paper is to define and delineate cyber security culture. Cyber security has been a concern for many years. In an effort to mitigate the cyber security risks, technology-centred measures were deemed to be the ultimate solution. Nowadays, however, it is accepted that the process of cyber security requires much more than mere technical controls. On the contrary, it now demands a human-centred approach, including a cyber security culture. Although the role of cultivating a culture in pursuing cyber security is well appreciated, research focusing intensely on cyber security culture is still in its infancy. Additionally, knowledge on the subject is not clearly bounded and defined.

Design/methodology/approach

General morphological analysis (GMA) is used to define, structure and analyse the cyber security environment culture.

Findings

This paper identifies the most important variables in cultivating a cyber security culture.

Research implications

The delineation of the national cyber security domain will contribute to the relatively new domain of cyber security culture. They contribute to the research community by means of promoting a shared and common understanding of terms. It is a step in the right direction towards eliminating the ambiguity of domain assumptions.

Practical implications

Practically, the study can assist developing nations in constructing strategies that addresses the key factors that need to be apparent in lieu to cultivating its envisaged national culture of cyber security. Additionally, the GMA will contribute to the development of solutions or means that do not overlook interrelations of such factors.

Originality/value

Delineating and defining the cyber security culture domain more precisely could greatly contribute to realizing the elements that collectively play a role in cultivating such a culture for a national perspective.

Keywords

Citation

Gcaza, N., von Solms, R., Grobler, M.M. and van Vuuren, J.J. (2017), "A general morphological analysis: delineating a cyber-security culture", Information and Computer Security, Vol. 25 No. 3, pp. 259-278. https://doi.org/10.1108/ICS-12-2015-0046

Publisher

:

Emerald Publishing Limited

Copyright © 2017, Emerald Publishing Limited