Browsing by Author "Ruhwanya, Zainab"

Now showing 1 - 2 of 2
  • No Thumbnail Available
    Item
    Open Access
    Cybersecurity in the workplace: factors that influence positive cybersecurity behavior against phishing in South African institutions
    (2025) Pilane, Karabo; Ruhwanya, Zainab
    In South Africa one of the top cybersecurity threats is phishing. Furthermore, employees' responses to phishing emails can either bolster or weaken an organisation's cyber security. It is estimated that more than 90% of data breaches are due to successful phishing attacks. They bring the maximum benefits with little to no cost for cyber attackers. Hence, this study aims to explain the factors that influence cybersecurity protective behaviour against phishing in South African organisations. A quantitative method was used, and data were collected online through a questionnaire survey. One hundred and twenty respondents from South African organisations participated. The partial least squares-structural equation modelling platform provided in SmartPLS-4 was used to model the data. SmartPLS was used to calculate and analyse reliability, convergent and discriminant validity, path coefficients, and significance of relationships. Factors that were identified as influencing cybersecurity protective behaviour against phishing were remote working, cybersecurity awareness, perceived user self-efficacy, facilitating conditions, perceived vulnerability, perceived severity, response efficacy, response costs, and government cyber laws enforcement.
  • No Thumbnail Available
    Item
    Open Access
    The influence of COVID-19 contextual factors on information security policy compliance
    (2023) Kautondokwa, Popyeni; Ruhwanya, Zainab; Brown Irwin
    This study aims to understand the impact of COVID-19 pandemic-induced contextual factors on information security policy compliance. The most significant change resulting from the COVID-19 pandemic has been a shift to working from home. Hence, this study aims to understand the impact that telecommuting has had on organisations' information security rules and procedures and how these rules and procedures have impacted the compliance behaviour of employees. This study was based on a conceptual model and used the quantitative research methodology. The sample population for this study was employees working in South African organisations that have information security policies. This study had 298 participants and the data was collected during the fourth wave of COVID-19 infections in South Africa using survey questionnaires. Analysis was conducted using Partial Least Squares Structural Equation Modelling. This study found that technostress had a negative impact on the compliance behaviour of employees, while telecommuting had a positive impact on information security policy awareness and information security policy reviews within organisations. This study also found that information security policy awareness and information security policy reviews in organisations had a significant impact on the compliance behaviour of employees in organisations. This study makes several contributions. Practical contributions include understanding the effect of the work-from-home arrangement on information security policy compliance behaviour, on information security policy awareness and on information security policy reviews. Theoretically, the study developed a conceptual model which can be used by researchers to understand compliance behaviour and to build on this research. Findings from this study can be used by organisations with work-from-home arrangements to strengthen security awareness programs and to update existing information security policies. Further studies can be conducted to understand the impact of COVID-19 pandemic-induced contextual factors in other settings and geographical regions.