About the Journal
About the Journal
Editorial Board
Scientific Council
Reviewers
Ethical Code
Special Issue
GDRP - information on the processing of personal data
Terms of the journal
Indexing
Licenses & Access
Archive
For Authors
Publishing Policy
Technical instruction for the authors
Agreement CC BY-SA
Copyright statement
Publication procedure
Contact
About the Journal
About the Journal
Editorial Board
Scientific Council
Reviewers
Ethical Code
Special Issue
GDRP - information on the processing of personal data
Terms of the journal
Indexing
Licenses & Access
Human - the weakest or the strongest link? The role of organisational culture in ensuring security of remote work
1
Politechnika Warszawska, Wydział Zarządzania
Submission date: 2022-06-26
Final revision date: 2022-11-20
Acceptance date: 2022-11-21
Publication date: 2022-11-29
JoMS 2022;49(2):608-620
KEYWORDS
TOPICS
ABSTRACT
Objectives:
Specialists dealing with cyber security of organisations often cite the saying that a chain is only as strong as the weakest link in it. Experts alert that human error is the cause of more than half of the events in which corporate data has been lost. This issue becomes crucial in the times of widespread remote work. Since many professional duties have been performed recently at home or ‘café’ environment, organisations have been exposed to numerous threats, financial and image losses. The aim of the article is to analyse these threats and to discuss the role of organisational culture in creating working environment ensuring cyber security.
Material and methods:
The starting point is the presentation of cyber security threats related to individual forms of remote work, such as work on company computer equipment outside the employer's premises, work on private computer equipment and work on computer equipment provided by a coworking centre.
Results:
Then, (based on the classic concept of Edgar Schein), three levels of organisational culture will be presented.
Conclusions:
Eventually, the article will indicate actions to be taken at each of these levels in order to foster employees’ behaviour aimed at increasing cyber security.
Specialists dealing with cyber security of organisations often cite the saying that a chain is only as strong as the weakest link in it. Experts alert that human error is the cause of more than half of the events in which corporate data has been lost. This issue becomes crucial in the times of widespread remote work. Since many professional duties have been performed recently at home or ‘café’ environment, organisations have been exposed to numerous threats, financial and image losses. The aim of the article is to analyse these threats and to discuss the role of organisational culture in creating working environment ensuring cyber security.
Material and methods:
The starting point is the presentation of cyber security threats related to individual forms of remote work, such as work on company computer equipment outside the employer's premises, work on private computer equipment and work on computer equipment provided by a coworking centre.
Results:
Then, (based on the classic concept of Edgar Schein), three levels of organisational culture will be presented.
Conclusions:
Eventually, the article will indicate actions to be taken at each of these levels in order to foster employees’ behaviour aimed at increasing cyber security.
REFERENCES (36)
1.
Ahmad, A., Maynard, S.B., Park, S. (2012), Information security strategies: Towards anorganizational multi strategy perspective, 25 (2). Journal of Intelligent Manufacturing.
2.
Albrechtsen, E., Hovden, J. (2010). Improving information security awareness and behavior.
3.
through dialogue participation, and collective reflection. An intervention study, 29(4):432-445. Journal of Computers and Security.
4.
Alexei, Arina, Alexei, Anatolie (2021). Cyber Security Threat Analysis In Higher Education Institutions As A Result Of Distance Learning. 10 (3), 128-133. International Journal of Scientific & Technology Research.
5.
Ali, R. (2021). Looking to the future of the cyber security landscape, 2021 (3), 8-10. Network Security.
6.
Allen, T.D., Golden, T.D., Shockley, K.M. (2015), How Effective is Telecommuting? Assessing the Status of Our Scientific Findings, 16 (2). Psychological Science in the Public Interest.
7.
Bendkowski, J. (2018), Coworking – nowa forma pracy w gospodarce cyfrowej, 124. Zeszyty Naukowe Politechniki Śląskiej. Organizacja i Zarządzanie.
8.
Borkovich, D.J., Skovira, R.J. (2020), Working from home: Cybersecurity in the age of covid-19, 21 ( 4), 234-246, 2020. Issues in Information Systems.
9.
Bodsberg, L., Grøtan, T. O., Jaatun, M. G., Wærø, I. (2021). HSE and Cyber Security in Remote Work, 2021 International Conference on Cyber Situational Awareness, Data Analytics and Assessment (CyberSA), 2021, 1-8, doi: 10.1109/CyberSA52016.2021.9478249.
10.
Chmura, J. (2017). Forming the awareness of employees in the field of information security, 8 (1). Journal of Positive Management.
11.
Curran, K. (2021). Cyber security and the remote workforce, 2020 (6), 11-12. Computer Fraud & Security.
14.
Filipowicz G. (2019). Zarządzanie kompetencjami. Perspektywa firmowa i osobista. Wolters Kluwer, Warszawa.
15.
Gach, D. (2018), Kształtowanie elementów kultury organizacyjnej zorientowanych na zachowanie bezpieczeństwa informacyjnego, 4, 157-169. Bezpieczeństwo. Teoria i praktyka.
16.
HP Wolf Security Threat Insights Report 1H 2021, https://threatresearch.ext.hp.... (Access, June 2022).
17.
Hutchins, S., Britt, S. (2020). Cybersecurity Policies for Remote Work, 67 (9), 10-12. Risk Management.
18.
Jabłoński, M., Mielus, M. (2010). Zagrożenia bezpieczeństwa informacji w organizacji Gospodarczej, in. M. Kwieciński (ed.) Bezpieczeństwo informacji i biznesu. Zagadnienia wybrane. Kraków: Oficyna Wydawnicza AFM.
19.
Kossowska, M., Sołtysińska, I. (2002). Szkolenie pracowników a rozwój organizacji. Oficyna Ekonomiczna, Kraków.
20.
Kurek, M. (ed. 2021), Barometr cyberbezpieczeństwa. COVID-19 przyspiesza cyfryzację firm, raport KPMG. Organizacja pracy zdalnej w wybranych podmiotach wykonujących zadania publicznew związku z ogłoszeniem stanu epidemii. Informacja o wynikach kontroli NIK, wrzesień 2021.
21.
Rae, L. (1999). Planowanie i projektowanie szkoleń, translated by A. Hędrzak. Dom Wydawniczy ABC, Warszawa.
22.
Rae, L. (2003). Planning and Designing Training Sessions. Oficyna Ekonomiczna, Kraków.
23.
Sabin, J. (2021), The future of security in a remote-work environment, 2021 (10), 15-17, Network Security.
24.
Schein, E.H. (2010). Organizational Culture and Leadership, Jossey-Bass A. Wiley Imprint San Francisco.
25.
Schultz, E. (2005), The human factor in security, 24 (6). Computers and Security.
26.
Sidor-Rządkowska, M. (2020). Kompetencyjne systemy ocen pracowników. Przygotowanie, wdrażanie i integrowanie z innymi systemami ZZL. Wolters Kluwer, Warszawa.
27.
Sidor-Rządkowska, M. (2021). Kształtowanie przestrzeni pracy. Praca w biurze, praca zdalna, coworking. Warszawa: Wolters Kluwer.
28.
Stefaniuk, T. (2020a), Bezpieczeństwo informacji w świadczeniu pracy zdalnej, in M. Kubiak (ed.) Prawne aspekty informacji chronionych. Siedlce: Wydawnictwo Uniwersytetu Przyrodniczo-Humanistycznego.
29.
Stefaniuk, T. (2020b), Training in shaping employee information security awareness, 7 (3). Entrepreneurship and Sustainability Issues.
30.
Weil, T., Murugesan, S. (2020). IT Risk and Resilience—Cybersecurity Response to COVID-19, 22 (3), 4-10. IT Professional.
31.
Woźniak, J. (2021), Współczesne monitorowanie pracy. Podstawy teoretyczne i metody Zastosowania. Warszawa: Wolters Kluwer.
32.
Wróbel, P. (2013), Zakres zastosowania wideokonferencji w organizacjach, 5. Ekonomika i Organizacja Przedsiębiorstwa.
33.
Wróbel, P. (2014). Komunikacja elektroniczna: zagrożenia i ich skutki dla organizacji. Sopot: Wydawnictwo Uniwersytetu Gdańskiego.
34.
Wróbel, P. (2020), Kompetencje sprawnego telepracownika, in. H. Czubasiewicz (ed.), Sukces organizacji w warunkach gospodarki cyfrowej. Zarządzanie zasobami ludzkimi. Sopot: Wydawnictwo Uniwersytetu Gdańskiego.
35.
Wróbel, P., Stefaniuk, T. (2021). Implementation of Remote Work in organisations. People, Processes, Technologies, Security. Wydawnictwo Uniwersytetu Gdańskiego.
36.
Wychowański, J. (ed. 2021), Cyberbezpieczeństwo w polskich firmach, report Vecto.
Share
RELATED ARTICLE
| eISSN: | 2391-789X |
| ISSN: | 1734-2031 |
We process personal data collected when visiting the website. The function of obtaining information about users and their behavior is carried out by voluntarily entered information in forms and saving cookies in end devices. Data, including cookies, are used to provide services, improve the user experience and to analyze the traffic in accordance with the Privacy policy. Data are also collected and processed by Google Analytics tool (more).
You can change cookies settings in your browser. Restricted use of cookies in the browser configuration may affect some functionalities of the website.
You can change cookies settings in your browser. Restricted use of cookies in the browser configuration may affect some functionalities of the website.
