Open AccessSystem End-User Actions as aThreat to Information System Security
Author(s) -
Paulus Kautwima,
Titus Haiduwa,
K Sravya Sai,
Valerianus Hashiyana,
Nalina Suresh
Publication year - 2021
Language(s) - English
Resource type - Conference proceedings
DOI - 10.5121/csit.2021.111611
Subject(s) - computer security , computer science , information security , end user , security information and event management , information system , data breach , information sensitivity , internet privacy , cloud computing security , world wide web , engineering , cloud computing , electrical engineering , operating system
Information system security is of paramount importance to every institution that deals with digital information. Nowadays, efforts to address cybersecurity issues are mostly software or hardware-oriented. However, the most common types of cybersecurity breaches happen as a result of unintentional human errors also known as end user actions. Thus, this study aimed to identify the end-user errors and the resulting vulnerabilities that could affect the system security requirements, the CIA triad of information assets. The study further presents state-of-the-art countermeasures and intellectual ideas on how entities can protect themselves from advent events. Adopted is a mixed-method research approach to inform the study. A closed-ended questionnaire and semi-structured interviews were used as data collection tools. The findings of this study revealed that system end user errors remain the biggest threat to information systems security. Indeed errors make information systems vulnerable to certain cybersecurity attacks and when exploited puts legitimate users at risk.