Search results

Social engineering is crucial in today’s digital landscape. As technology advances, malicious individuals exploit human judgment and trust. This study explores how age, education and occupation affect individuals’ awareness, skills and perceptions of social engineering.

A quantitative research approach was used to survey a diverse demographic of Egyptian society. The survey was conducted in February 2023, and the participants were sourced from various Egyptian social media pages covering different topics. The collected data was analyzed using descriptive and inferential statistics, including independent samples t-test and ANOVA, to compare awareness and skills across different groups.

The study revealed that younger individuals and those with higher education tend to research social engineering more frequently. Males display a higher level of awareness but score lower in terms of social and psychological consequences as well as types of attacks when compared to females. The type of attack cannot be predicted based on age. Higher education is linked to greater awareness and ability to defend against attacks. Different occupations have varying levels of awareness, skills, and psychosocial consequences. The study emphasizes the importance of increasing awareness, education and implementing cybersecurity measures.

This study’s originality lies in its focus on diverse Egyptian demographics, innovative recruitment via social media, comprehensive exploration of variables, statistical rigor, practical insights for cybersecurity education and diversity in educational and occupational backgrounds.

In the modern digital realm, while artificial intelligence (AI) technologies pave the way for unprecedented opportunities, they also give rise to intricate cybersecurity issues, including threats like deepfakes and unanticipated AI-induced risks. This study aims to address the insufficient exploration of AI cybersecurity awareness in the current literature.

Using in-depth surveys across varied sectors (N = 150), the authors analyzed the correlation between the absence of AI risk content in organizational cybersecurity awareness programs and its impact on employee awareness.

A significant AI-risk knowledge void was observed among users: despite frequent interaction with AI tools, a majority remain unaware of specialized AI threats. A pronounced knowledge difference existed between those that are trained in AI risks and those who are not, more apparent among non-technical personnel and sectors managing sensitive information.

This study paves the way for thorough research, allowing for refinement of awareness initiatives tailored to distinct industries.

It is imperative for organizations to emphasize AI risk training, especially among non-technical staff. Industries handling sensitive data should be at the forefront.

Ensuring employees are aware of AI-related threats can lead to a safer digital environment for both organizations and society at large, given the pervasive nature of AI in everyday life.

Unlike most of the papers about AI risks, the authors do not trust subjective data from second hand papers, but use objective authentic data from the authors’ own up-to-date anonymous survey.

Construction enterprises are achieving the goal of production safety by increasingly focusing on the critical factor of “human” and the impact of individual characteristics on safety performance. Emotional intelligence is categorized into three models: skill-based, trait-based and emotional learning systems. However, the mechanism of action and the internal relationship between emotional intelligence and safety performance must be further studied. This study intends to examine the internal mechanism of emotional intelligence on safety performance in construction projects, which would contribute to the safety management of construction enterprises.

A structural equation model exploring the relationship between emotional intelligence and safety performance is developed, with political skill introduced as an independent dimension, situational awareness presented as a mediator, and management safety commitment introduced as a moderator. Data were collected by a random questionnaire and analyzed by SPSS 24.0 and AMOS 26.0. The structural equation model tested the mediation hypothesis, and the PROCESS macro program tested the moderated mediation hypothesis.

The results showed that construction workers' emotional intelligence directly correlates with safety performance, and situational awareness plays a mediating role in the relationship between emotional intelligence and the safety performance of construction workers. Management safety commitment weakens the positive predictive relationships between emotional intelligence and situational awareness and between emotional intelligence and safety performance.

This research reveals a possible impact of emotional intelligence on safety performance. Adding political skills to the skill-based model of emotional intelligence received a test pass. Political skill measures the sincere and cooperative skills of construction workers. Using people as a critical element plays a role in the benign mechanism of “Emotional Intelligence – Situational Awareness – Safety Performance.” Improving emotional intelligence skills through training, enhancing situational awareness, understanding, anticipation and coordination and activating management environment factors can improve safety performance. Construction enterprises should evaluate and train workers' emotional intelligence to improve workers' situational awareness and safety performance.

Railways are a well-known example of complex critical infrastructure, incorporating socio-technical systems with humans such as drivers, signallers, maintainers and passengers at the core. The technological evolution including interconnectedness and new ways of interaction lead to new security and safety risks that can be realised, both in terms of human error, and malicious and non-malicious behaviour. This study aims to identify the human factors (HF) and cyber-security risks relating to the role of signallers on the railways and explores strategies for the improvement of “Digital Resilience” – for the concept of a resilient railway.

Overall, 26 interviews were conducted with 21 participants from industry and academia.

The results showed that due to increased automation, both cyber-related threats and human error can impact signallers’ day-to-day operations – directly or indirectly (e.g. workload and safety-critical communications) – which could disrupt the railway services and potentially lead to safety-related catastrophic consequences. This study identifies cyber-related problems, including external threats; engineers not considering the human element in designs when specifying security controls; lack of security awareness among the rail industry; training gaps; organisational issues; and many unknown “unknowns”.

The authors discuss socio-technical principles through a hexagonal socio-technical framework and training needs analysis to mitigate against cyber-security issues and identify the predictive training needs of the signallers. This is supported by a systematic approach which considers both, safety and security factors, rather than waiting to learn from a cyber-attack retrospectively.

The construction industry has struggled to deliver schemes on time to budget and right-first-time (RFT). There have been many studies into nonconformance and rework through quantitative research over the years to understand why the industry continues to see similar issues of failure. Some scholars have reported rework figures as high as 12.6% of total contract value, highlighting major concerns of the sustainability of construction projects. Separately, however, there have been few studies that explore and detail the views of industry professions who are caught in the middle of quality issues, to understand their perceptions of where the industry is failing. As such, this paper interrogates qualitative data (open-ended questions) on the topic of nonconformance and rework in construction to understand what industry professionals believe are the causes and suggested improvement areas.

A qualitative approach is adopted for this research. An industry survey consisting of seven open-ended questions is presented to two professional working groups within a Tier 1 contractor, and outputs are analysed using statistic software (NVivo 12) to identify prominent themes for discussion. Inductive analysis is undertaken to gain further insight into responses to yield recurrent areas for continuous improvement.

Qualitative analysis of the survey reveals a persistent prioritisation of cost and programme over quality management in construction project. Furthermore, feedback from construction professionals present a number of improvement areas that must be addressed to improve quality. These include increased training and competency investment, overhauling quality behaviours, providing greater quality leadership direction and reshaping the way clients govern schemes.

There are limitations to this paper that require noting. Firstly, the survey was conducted within one principal contractor with varying levels of knowledge across multiple sectors. Secondly, the case study was from one major highways scheme; therefore, the generalisability of the findings is limited. It is suggested that a similar exercise is undertaken in other sectors to uncover similar improvement avenues.

The implications of this study calls for quality to be re-evaluated at project, company, sector and government levels to overhaul how quality is delivered. Furthermore, the paper identifies critical learning outcomes for the construction sector to take forward, including the need to reassess projects to ensure they are appropriately equip with competent personnel under a vetted, progressive training programme, share collaborative behaviours that value quality delivery on an equal standing to safety, programme and cost and tackle the inappropriate resource dilemmas projects finding themselves in through clear tendering and accurate planning. In addition, before making erratic decisions, projects must assess the risk profiling of proceed without approved design details and include the client in the decision-making process. Moreover, the findings call for a greater collaborative environment between the construction team and quality management department, rather than being seen as obstructive (i.e. compliance based policing). All of these must be driven by leadership to overhaul the way quality is managed on schemes. The findings demonstrate the importance and impact from open-ended survey response data studies to enhance quantitative outcomes and help provide strengthened proposals of improvement.

This paper addresses the highly sensitive area of quality failure outcomes and interrogates them via an industry survey within a major UK contractor for feedback. Unique insights are gained into how industry professionals perceive quality in construction. From previous research, this has been largely missing and offers a valuable addition in understanding the “quality status quo” from those delivering schemes.

The impact of mankind on the environment and the usage of natural resources might be influenced by spirituality, through the consciousness of creating an improved moral sense regarding the consequences of human activities and the necessity to alter these to achieve sustainable development. However, the spiritual element in the form of ecospirituality (ES) has not been sufficiently considered in pro-environmental studies as it relates to the influence of green training (GT) on voluntary workplace green behaviour (VWGB) in the construction sector. This study aims to determine the effect of GT on VWGB and the mediating effect of ES on the relationship between GT and VWGB on construction projects.

This study’s data were gathered through a questionnaire survey of construction site managers and project managers by adopting the probability sampling method. 249 appropriately completed questionnaires were returned. The data obtained were analysed by means of the partial least squares structural equation modelling technique (PLS-SEM).

The outcomes of the study show that GT has a significant positive impact on VWGB, while ES has a significant mediating effect on the relationship between GT and VWGB, both supporting the study’s hypotheses.

These findings point to the fact that the hitherto conflicting results reported in earlier studies on the GT–VWGB relationship can be attributed to the lack of consideration given to ES. Hence, special attention should be given to ES.

This research presents actions to enhance the transformation of GT into VWGB by giving due consideration to ES, which was not taken into account in previous studies.

The purpose of this paper is to investigate the cyber hygiene practices of remote workers.

This paper used two instruments: first, the Cyber Hygiene Inventory scale, which measures users’ information and computer security behaviors; second, the Recsem Inventory, developed within this paper’s context, to evaluate the cybersecurity measures adopted by organizations for remote workers. It was conducted on remote workers to examine their information security practices. The instrument was administered to a sample of 442 employees reached via the LinkedIn platform. Analyses were performed with SPSS v26, Python programming language and Seaborn library.

The findings indicate a significant correlation between the security measures implemented by companies and their employees’ cyber hygiene practices. A sector comparison revealed a significant difference in cyber hygiene levels between public and private sector workers.

This paper aims to provide policymakers with suggestions for enhancing the cyber hygiene of remote workers to facilitate compliance with corporate security protocols.

This paper’s conclusions highlight the importance of companies increasing their cybersecurity investments as remote work becomes more prevalent. This should consider not only corporate-level factors but also employees' information and computer security behaviors.

This paper aims to explore the factors affecting cybersecurity implementation in organizations in various countries and develop a cybersecurity framework to improve cybersecurity practices within organizations for cybersecurity risk management through a systematic literature review (SLR) approach.

This SLR adhered to RepOrting Standards for Systematics Evidence Syntheses (ROSES) publication standards and used various research approaches. The study’s article selection process involved using Scopus, one of the most important scientific databases, to review articles published between 2014 and 2023.

This review identified the four main themes: individual factors, organizational factors, technological factors and governmental role. In addition, nine subthemes that relate to these primary topics were established.

This research sheds light on the multifaceted nature of cybersecurity by exploring factors influencing implementation and developing an improvement framework, offering valuable insights for researchers to advance theoretical developments, assisting industry practitioners in tailoring cybersecurity strategies to their needs and providing policymakers with a basis for creating more effective cybersecurity regulations and standards.

The human factor is the most important defense asset against cyberattacks. To ensure that the human factor stays strong, a cybersecurity culture must be established and cultivated in a company to guide the attitudes and behaviors of employees. Many cybersecurity culture frameworks exist; however, their practical application is difficult. This paper aims to demonstrate how an established framework can be applied to determine and improve the cybersecurity culture of a company.

Two surveys were conducted within eight months in the internal IT department of a global software company to analyze the cybersecurity culture and the applied improvement measures. Both surveys comprised the same 23 questions to measure cybersecurity culture according to six dimensions: cybersecurity accountability, cybersecurity commitment, cybersecurity necessity and importance, cybersecurity policy effectiveness, information usage perception and management buy-in.

Results demonstrate that cybersecurity culture maturity can be determined and improved if accurate measures are derived from the results of the survey. The first survey showed potential for improving the dimensions of cybersecurity accountability, cybersecurity commitment and cybersecurity policy effectiveness, while the second survey proved that these dimensions have been improved.

This paper proves that practical application of cybersecurity culture frameworks is possible if they are appropriately tailored to a given organization. In this regard, scientific research and practical application combine to offer real value to researchers and cybersecurity executives.

The purpose of this paper is to identify the factor structure of safety culture construct among engineering students at university context and to examine the measurement invariance of this instrument across different socio-demographic groups in a sample of engineering students in the United Arab Emirates (UAE).

An exploratory online questionnaire was completed by 770 undergraduate and postgraduate engineering students across the UAE. Data were analyzed using a diversified multi-group and a robust and sophisticated cross-validation testing strategy. Confirmatory factor analysis (CFA) was used to test factor structures identified in previous studies. Multi-group invariance testing was conducted to determine the extent to which factor structure is comparable across groups (i.e. gender, educational and experiential background).

Three-factor model was preferred for its parsimony. The results showed that the level of safety awareness and attitude is relatively satisfactory, whereas safety behaviour is inadequate. No significant difference was showed in multi-group invariance between demographic groups.

This research is a cross-sectional study and limited to the views of engineering students (informal group). The study would benefit from both informal and formal groups in assessing safety culture at university for a robust empirical evidence. The research highlights relevant implications for policy and program development, by pointing to the need to promote safety culture and mitigate safety-related accidents among engineering students.

This paper offers insight into benefit of understanding the level of safety culture among engineering students and extend knowledge of informal group involvement in safety-related accidents at university level.