Fortifying Healthcare: An Action Research Approach to Developing an Effective SETA Program Jason Williams, Humayun Zafar, and Saurabh Gupta Coles Research Symposium on Homeland Security, Special Issue, SIFALL23-05, October 2023
OVERVIEW
Organizations continue to use security education training and awareness (SETA) programs to reduce the number of cybersecurity incidents related to phishing. A large healthcare organization contacted the authors to share that they continued to struggle with the efficacy of their traditional training program and to ask whether we could design a better program. Using an action research methodology, the researchers designed a new training program using self-regulation theory. The comparison of the results of the phishing tests before and after the training showed that the new SETA program was more effective than the existing SETA program. The results also showed differences between medical and office staff regarding the effectiveness of training. The research shows the effectiveness of self-regulatory theory in SETA training and how this approach leads to significant improvement vs traditional methods of training. The research also points to new emerging issues in security training research.
40 | Coles Research Symposium
Made with FlippingBook - Online catalogs