An Empirical Study of SETA Program Sustaining Educational Sector’s Information Security vs. Information Systems Misuse

Binglong Zheng; Daniel Tse; Jiajing Ma; Xuanyi Lang; Yinli Lu

doi:10.3390/su151712669

An Empirical Study of SETA Program Sustaining Educational Sector’s Information Security vs. Information Systems Misuse

Binglong Zheng
, Daniel Tse^*
, Jiajing Ma
, Xuanyi Lang
, Yinli Lu

^*Corresponding author for this work

College of Business

Research output: Journal Publications and Reviews › RGC 21 - Publication in refereed journal › peer-review

1 Citation (Scopus)

90 Downloads (CityUHK Scholars)

Abstract

Information systems misuse and data breaches are among the most common information security threats at the organisational and individual levels. Security, Education, Training and Awareness (SETA) program can be effective tools in addressing and preventing such risks for sustaining the educational sector’s information security, although it is costly to implement and achieves limited results. Several studies have shown that SETA implementation can improve corporate employees’ information security protection behaviours. This study adopts the method of quantitative research, deterrence theory with selected perceived cost and information security awareness (ISA) as intermediate variables and explores how SETA programs affect information system abuse on campuses. The results show that implementing the SETA program positively impacts perceived cost and ISA; perceived cost and information security positively impact reducing misuse behaviour of information systems. At last, we provide rationalisation suggestions for individual students and schools to help SETA programs to be better implemented. © 2023 by the authors.

Original language	English
Article number	12669
Journal	Sustainability (Switzerland)
Volume	15
Issue number	17
Online published	22 Aug 2023
DOIs	https://doi.org/10.3390/su151712669
Publication status	Published - Sept 2023

Research Keywords

information security awareness
IS misuse
perceived cost
SETA
sustainability

Publisher's Copyright Statement

This full text is made available under CC-BY 4.0. https://creativecommons.org/licenses/by/4.0/

Access Output

10.3390/su151712669

168626969.pdfFinal Published version, 842 KBLicence: CC BY

Other Access Options

Check CityUHK Library

Permanent Link

Right click to copy link

Cite this

@article{a608ab93e04743b1befb012993162f15,

title = "An Empirical Study of SETA Program Sustaining Educational Sector{\textquoteright}s Information Security vs. Information Systems Misuse",

abstract = "Information systems misuse and data breaches are among the most common information security threats at the organisational and individual levels. Security, Education, Training and Awareness (SETA) program can be effective tools in addressing and preventing such risks for sustaining the educational sector{\textquoteright}s information security, although it is costly to implement and achieves limited results. Several studies have shown that SETA implementation can improve corporate employees{\textquoteright} information security protection behaviours. This study adopts the method of quantitative research, deterrence theory with selected perceived cost and information security awareness (ISA) as intermediate variables and explores how SETA programs affect information system abuse on campuses. The results show that implementing the SETA program positively impacts perceived cost and ISA; perceived cost and information security positively impact reducing misuse behaviour of information systems. At last, we provide rationalisation suggestions for individual students and schools to help SETA programs to be better implemented. {\textcopyright} 2023 by the authors.",

keywords = "information security awareness, IS misuse, perceived cost, SETA, sustainability",

author = "Binglong Zheng and Daniel Tse and Jiajing Ma and Xuanyi Lang and Yinli Lu",

year = "2023",

month = sep,

doi = "10.3390/su151712669",

language = "English",

volume = "15",

journal = "Sustainability (Switzerland)",

issn = "2071-1050",

publisher = "Multidisciplinary Digital Publishing Institute (MDPI)",

number = "17",

}

TY - JOUR

T1 - An Empirical Study of SETA Program Sustaining Educational Sector’s Information Security vs. Information Systems Misuse

AU - Zheng, Binglong

AU - Tse, Daniel

AU - Ma, Jiajing

AU - Lang, Xuanyi

AU - Lu, Yinli

PY - 2023/9

Y1 - 2023/9

N2 - Information systems misuse and data breaches are among the most common information security threats at the organisational and individual levels. Security, Education, Training and Awareness (SETA) program can be effective tools in addressing and preventing such risks for sustaining the educational sector’s information security, although it is costly to implement and achieves limited results. Several studies have shown that SETA implementation can improve corporate employees’ information security protection behaviours. This study adopts the method of quantitative research, deterrence theory with selected perceived cost and information security awareness (ISA) as intermediate variables and explores how SETA programs affect information system abuse on campuses. The results show that implementing the SETA program positively impacts perceived cost and ISA; perceived cost and information security positively impact reducing misuse behaviour of information systems. At last, we provide rationalisation suggestions for individual students and schools to help SETA programs to be better implemented. © 2023 by the authors.

AB - Information systems misuse and data breaches are among the most common information security threats at the organisational and individual levels. Security, Education, Training and Awareness (SETA) program can be effective tools in addressing and preventing such risks for sustaining the educational sector’s information security, although it is costly to implement and achieves limited results. Several studies have shown that SETA implementation can improve corporate employees’ information security protection behaviours. This study adopts the method of quantitative research, deterrence theory with selected perceived cost and information security awareness (ISA) as intermediate variables and explores how SETA programs affect information system abuse on campuses. The results show that implementing the SETA program positively impacts perceived cost and ISA; perceived cost and information security positively impact reducing misuse behaviour of information systems. At last, we provide rationalisation suggestions for individual students and schools to help SETA programs to be better implemented. © 2023 by the authors.

KW - information security awareness

KW - IS misuse

KW - perceived cost

KW - SETA

KW - sustainability

UR - https://www.scopus.com/pages/publications/85170398118

UR - https://www.scopus.com/record/pubmetrics.uri?eid=2-s2.0-85170398118&origin=recordpage

U2 - 10.3390/su151712669

DO - 10.3390/su151712669

M3 - RGC 21 - Publication in refereed journal

SN - 2071-1050

VL - 15

JO - Sustainability (Switzerland)

JF - Sustainability (Switzerland)

IS - 17

M1 - 12669

ER -

An Empirical Study of SETA Program Sustaining Educational Sector’s Information Security vs. Information Systems Misuse

Abstract

Research Keywords

Publisher's Copyright Statement

Access Output

Other Access Options

Permanent Link

Other Files and Links

Fingerprint

Cite this