Evaluating the effectiveness of cybersecurity awareness programs in reducing phishing attacks: A qualitative study
1 Peshawar University KPK, Pakistan 90, Strutt House, 1- Erasmus Drive Derby, DE12DY United Kingdom.
2 Comsats University Islambad, Pakistan.
Research Article
World Journal of Advanced Research and Reviews, 2024, 23(02), 1663–1673
Publication history:
Received on 11 July 2024; revised on 19 August 2024; accepted on 21 August 2024
Abstract:
This qualitative study evaluates the effectiveness of cybersecurity awareness programs in reducing phishing attacks within organizations in the UK. Through semi-structured interviews with employees who have participated in these programs, the research explores participants' perceptions, experiences, and behavioral changes regarding phishing awareness and response strategies. Findings indicate that the training significantly enhances participants' ability to recognize phishing attempts and fosters more cautious behavior when interacting with suspicious content. However, the study also reveals challenges, such as the need for more tailored training content to accommodate varying levels of technical expertise and the necessity for continuous reinforcement to sustain long-term vigilance. The insights gained underscore the importance of regularly updated and scenario-based training to maintain high levels of cybersecurity awareness among employees. The study concludes with practical recommendations for organizations to enhance the design and delivery of cybersecurity awareness programs, as well as suggestions for future research to explore the long-term impacts and sustainability of such training initiatives.
Keywords:
Cybersecurity; Phishing Attacks; Employee Training; Awareness Program; UK
Full text article in PDF:
Copyright information:
Copyright © 2024 Author(s) retain the copyright of this article. This article is published under the terms of the Creative Commons Attribution Liscense 4.0