The "Human Factor" In Cybersecurity: Exploring the Accidental Insider

Abstract

A great deal of research has been devoted to the exploration and categorization of threats posed from malicious attacks from current employees who are disgruntled with the organisation, or are motivated by financial gain. These so-called “insider threats” pose a growing menace to information security, but given the right mechanisms, they have the potential to be detected and caught. In contrast, human factors related to aspects of poor planning, lack of attention to detail, and ignorance are linked to the rise of the accidental or unintentional insider. In this instance there is no malicious intent and no prior planning for their “attack,” but their actions can be equally as damaging and disruptive to the organi- sation. This chapter presents an exploration of fundamental human factors that could contribute to an individual becoming an unintentional threat. Furthermore, key frameworks for designing mitigations for such threats are also presented, alongside suggestions for future research in this area.

Description

Copyright © 2018 by IGI Global. All rights reserved. No part of this publication may be reproduced, stored or distributed in any form or by any means, electronic or mechanical, including photocopying, without written permission from the publisher.Product or company names used in this set are for identification purposes only. Inclusion of the names of the products or companies does not indicate a claim of ownership by IGI Global of the trademark or registered trademark. IGI Global Fair Use Policy: As you know authors and editors of IGI Global sign an Author Warranty and Transfer of Copyright Agreement for their work published by IGI Global. However, IGI Global supports a Fair Use Policy where under this policy you may utilize your final typeset PDF (which includes the title page, table of contents and other front materials, and the copyright statement) of your chapter or article of this publication (NOT the entire book or journal issue), in your teaching materials or post to your own secure personal website and/or university repository site. Under the Fair Use Policy, however, authors and editors ARE NOT authorized to upload their chapter, article, or full book publication or journal issue to open access sites, including, but not limited to: ResearchGate, Academia.edu, SSRN, arXiv, or any others. Doing so is considered a clear violation of the International Copyright Laws and violators could face legal consequences.

Keywords

Accidental Insider Threat, Cybersecurity, human factors in Cybersecurity

Citation

Hadlington, L. (2018). The “Human Factor” in Cybersecurity. In J. McAlaney and L. A. Frumkin (Eds.), Psychological and Behavioral Examinations in Cyber Security (pp. 46–63). Hershey. PA: IGI Global.

Rights

Research Institute

Institute for Psychological Science