//Research Library 

Our research library is the world’s first globally accessible archive of research into the human aspect of cyber security and behavioural science as applied to cyber security awareness and online behavioural change.

To see the latest studies from pioneering academics, scroll down.



Filter your results:

Jul, 2018

Know the game, not just the rules: The changing face of cyber security

This paper proposes 10 cyber security challenges that need to be addressed, in an attempt to spark discussion about the global approach to cyber security.


Read full paper



Authors: Richard Horne PwC

May, 2018

Phishing attacks: defending your organisation

This paper proposes a multi-layered approach to defending your organisation against phishing attacks, condensed into four layers. At each layer, the authors recommend tactical interventions to help organisations achieve this multi-layered security.


Read full paper



Authors: NCSC, CPNI

Apr, 2018

Revitalizing privacy and trust in a data-driven world

This report summarises key findings from ‘The Global State of Information Security Survey 2018’, which surveyed 9,500 global C-suite executives and directors about their organisation’s security practises. The report identifies and expands on nine data privacy and trust insights drawn from the survey.


Read full paper



Authors: PwC

Mar, 2018

Navigating the new cybersecurity threat landscape

This report is designed to educate and inform organisations on the cyber threat landscape. It explores what to consider when disaster strikes and explains the importance of people and partnerships.


Read full paper



Authors: Microsoft

Jan, 2018

WFE Staff Behavior and Culture Best Practice Guidelines

A set of best practice guidelines published by the WFE designed to encourage a culture of cyber security compliance, including ideas on behavioural incentives, cultural incentives and operational support.


Read full paper



Authors: WFE

Nov, 2017

Employee Information Security Beliefs in the Home Environment

Through a series of qualitative interviews with 19 participants, this study looked into and reported several factors influencing employees’ security behaviour at home.


Read full paper



Authors: Joseph Omidosu, Jacques Ophoff

Nov, 2017

The Socio-Technical Impact on Security of the Healthcare Internet of Things in the Use of Personal Monitoring Devices (PMDs)

This paper sets out a framework that might allow those who use healthcare personal monitoring devices (such as fitness trackers) to better protect their personal information.


Read full paper



Authors: Asanka I Pathirana, Patricia A H Williams

Nov, 2017

What Do They Really Think? Overcoming Social Acceptability Bias in Information Security Research

This study used two techniques to ensure people accurately reported attitudes on information security in the workplace. A key finding was those who believed information security to be the responsibility of the organisation felt security risks to be overstated, whereas those who believed information security to be the responsibility of individuals felt warnings over security risks were valid and justified.


Read full paper



Authors: D. Ashenden

Nov, 2017

Understanding susceptibility to phishing emails: Assessing the impact of individual differences and culture

This study looked into how individual differences and national culture impacted participants’ responses to phishing and spear-phishing emails. The study found a national culture that promoted the needs of the individual (rather than the needs of society) increased the likelihood of phishing and spear-phishing emails being accurately identified. The same study found impulsiveness decreased the chances of phishing emails being identified but the same was not true of spear-phishing emails. Finally, the study found individual differences had an effect on user’s ability to spot malicious emails.


Read full paper



Authors: Marcus Butavicius, Kathryn Parsons, Malcolm Pattinson, Agata McCormac, Dragana Calic, Meredith Lillie

Nov, 2017

Understanding the Relationships between Resilience, Work Stress and Information Security Awareness

This study examined the relationship between Information Security Awareness (ISA), resilience and work stress, finding greater resilience to be associated with higher ISA and lower work stress.


Read full paper



Authors: Agata McCormac, Dragana Calic, Marcus Butavicius, Kathryn Parsons, Malcolm Pattinson, Meredith lillie

Want to suggest an addition to our research library?