Observations on Genderwise Differences among University Students in Information Security Awareness

Observations on Genderwise Differences among University Students in Information Security Awareness

Ali Farooq (Department of Information Technology, University of Turku, Turku, Finland), Johanna Isoaho (Department of Information Technology, University of Turku, Turku, Finland), Seppo Virtanen (Department of Information Technology, University of Turku, Turku, Finland) and Jouni Isoaho (Department of Information Technology, University of Turku, Turku, Finland)
Copyright: © 2015 |Pages: 15
DOI: 10.4018/IJISP.2015040104
OnDemand PDF Download:
$30.00
List Price: $37.50

Abstract

The purpose of this study is to examine genderwise differences in information security awareness (ISA) among university students. 614 usable responses were collected using survey from the students of eight different disciplines in a university. ISA is considered as combination of knowledge and behavior, and called computed ISA. Knowledge and behavior is assessed using vocabulary test and scenario based questions, whereas perceived ISA (PISA) is measured on 5-point Liker type question. The application of t-test and Cohen's d values show that both the genders differ significantly from each other in their Knowledge, Behavior, computed ISA and PISA. In comparison to female students, male students are found better in terms of aforementioned variables. The study also shows that unlike male students, female students prefer to utilize their social circle to accumulate information security knowledge. Moreover, the male students prefer to learn security related issues by self-exploration, whereas, the female students prefer formal educational methods for similar learning.
Article Preview

Introduction

The significance of the data resources has been widely acknowledged and organizations invest a significant amount of resources on their security to ensure the business continuity (Colwill, 2009). In this regard, the importance of the human factor has been understood and while designing effective information security (IS) solutions merely technical solutions are not proposed((Furnell, Jusoh, & Katsabas, 2006; Herath & Rao, 2009). In order to strengthen the human element against diversity of the IS attacks and threats, IS policies, security training and education, and information security awareness (ISA) programs have been suggested by the researchers (Abraham, 2011; D’Arcy & Hovav, 2009; Pahnila, Siponen, & Mahmood, 2007). A review of literature (Lebek, Uffen, Breitner, Neumann, & Hohler, 2013; Tsohou, Kokolakis, Karyda, & Kiountouzis, 2008) suggests that ISA has been studied extensively in the context of commercial and business organizations, however, the same is not true for educational institutions.

Universities and other educational institutions are different from the commercial organizations both in terms of objectives as well as the human element. Unlike commercial organizations, the main objective of educational institutions is to impart knowledge and education among the youth. Educational institutions have a third entity – students – in addition to normal employer-employee entities that exist in the commercial organizations. Educational institutions especially universities, have been in the cross-hair of the cybercriminals due to availability of the vast computing power and the open access (Katz, 2005). The use of online resources such as the digital libraries and online courses, and internet based services such as online social networks, are on the rise during the recent years (B. Kim, 2014). This rapid growth in the usage exposes the students to different security threats that linger in the Internet. (Farooq, Ullah Kakakhel, Virtanen & Isoaho, 2015) identified 75 different security and privacy related threats related to university students.

Although there is a growing importance of the ISA for educational institutions, for example, (Ingerman & Yang, 2011) ranked IS as the one of the top areas of concern for the educational institutions, research is pretty scarce in this regard. A recent literature review of ISA awareness studies revealed that out of 24 ISA assessment studies found during 2005-2014 only 3 were focusing on college/university students (Rahim et al., 2015). Among the students’ focused ISA studies found in the literature, most of the time students from single disciplines were studied, for example Business and Economics (Jones, Chin, & Aiken, 2014; Kim, 2013). The authors were unable to find a study where ISA of students has been studied comprehensively across the different disciplines. This disparity urged the authors to conduct a cross-discipline ISA assessment study to analyze different ISA related issues faced by students from different educational background. An earlier investigation (Farooq, Isoaho, Virtanen & Isoaho, 2015) revealed that some of the students’ individual factors such as gender and training have statistically significant association with ISA as well as its constituent dimensions, knowledge and behavior. Area of living, another students’ individual factor, showed significant association with knowledge only. Other individual factors such as age, educational level, discipline, nationality and working experience did not show any significant correlation with ISA or its constituent dimension in aforementioned study. Among all the students’ individual factors mentioned above, gender turned out to be the strongest factor that is correlated to the ISA and its constituent dimensions. However, the genderwise difference were not thoroughly discussed in the aforementioned study.

Complete Article List

Search this Journal:
Reset
Open Access Articles: Forthcoming
Volume 12: 4 Issues (2018): 1 Released, 3 Forthcoming
Volume 11: 4 Issues (2017)
Volume 10: 4 Issues (2016)
Volume 9: 4 Issues (2015)
Volume 8: 4 Issues (2014)
Volume 7: 4 Issues (2013)
Volume 6: 4 Issues (2012)
Volume 5: 4 Issues (2011)
Volume 4: 4 Issues (2010)
Volume 3: 4 Issues (2009)
Volume 2: 4 Issues (2008)
Volume 1: 4 Issues (2007)
View Complete Journal Contents Listing