Wan Noor Aziela Isma Binti Wan Zarilla Universiti Teknologi Mara Kota Bharu, Kelantan
In light of the abundance of security guidance and online educational resources available to end-users, there exists a necessity for a universally accepted assessment instrument to evaluate end-user security behaviours. We introduce the development of a tool of this nature. A survey was conducted to gather information on the prevailing computer security advice provided by experts to end-users. The purpose of this survey was to develop a series of Likert scale questions that would assess the degree to which respondents adhere to this advise. The Security Measurement Tool (Security MT) comprises 16 items that correspond exclusively to four factors: device securement (including the use of passwords, PINs, etc.) to lock devices, pass-word generation (involving the creation and utilisation of passwords), proactive awareness (involving the recognition and consideration of environmental security cues), and updating (ensuring software is kept up to date). This scale can be utilised by practitioners in several organisational contexts. Initially, they can utilise it to assess the security practices of their personnel and detect common vulnerabilities that can be addressed through focused interventions. This approach has the potential to decrease expenses and enhance the efficacy of organisational training programmes designed to enhance end-user security behaviour. Furthermore, businesses can utilise the scale to analyse the prevalent behaviours exhibited by their employees, with the aim of aligning the organization's security policy with the employees' inherent conduct. For instance, consider a scenario where an organisation becomes aware that a significant number of employees fail to secure their computers upon leaving. In such circumstances, the organisation may implement a policy mandating the locking of all computers following a brief period of inactivity.