Human Capability Evaluation Approach for Cyber Security in Critical Industrial Infrastructure, Advances in Human Factors in Cybersecurity, pp.169-182, 2016. ,
Control-Alt-Hack: the design and evaluation of a card game for computer security awareness and education. Presented at the Proceedings of the, ACM SIGSAC conference on Computer & communications security, 2013. ,
The Importance of Information Security Awareness for the Success of Business Enterprises, Advances in Human Factors in Cybersecurity, pp.211-222, 2016. ,
The Need for Effective Information Security Awareness, JAIT, vol.3, pp.176-183, 2012. ,
Death by a thousand facts: Criticising the technocratic approach to information security awareness, Info Mngmnt & Comp Security, vol.20, pp.29-38, 2012. ,
Security awareness of computer users: A phishing threat avoidance perspective, Computers in Human Behavior, vol.38, pp.304-312, 2014. ,
,
A White Hat Approach to Identifying Gaps Between Cybersecurity Education and Training: A Social Engineering Case Study, Advances in Human Factors in Cybersecurity, pp.229-237, 2016. ,
Managing information security awareness at an Australian bank: a comparative study, Info and Computer Security, vol.25, pp.181-189, 2017. ,
An exploratory investigation of message-person congruence in information security awareness campaigns, Computers & Security, vol.43, pp.64-76, 2014. ,
Individual differences and Information Security Awareness, Computers in Human Behavior, vol.69, pp.151-156, 2017. ,
Adapting Cyber-Security Training to Your Employees, Proceedings of the Twelfth International Symposium on Human Aspects of Information Security & Assurance, pp.67-79, 2018. ,
Analyzing trajectories of information security awareness, Info Technology & People, vol.25, pp.327-352, 2012. ,
,
Improving Organisational Information Security Management: The Impact of Training and Awareness, 2012 IEEE 14th International Conference on High Performance Computing and Communication & 2012 IEEE 9th International Conference on Embedded Software and Systems, pp.1270-1275, 2012. ,
The standard of good practice for in-formation security 2016, Information Security Forum Limited, 2016. ,
The Standard of Good Practice for Information Security, Information Security Forum, 2018. ,
Impact of employees' demographic characteristics on the awareness and compliance of information security policy in organizations, Telematics and Informatics, vol.35, pp.1770-1780, 2018. ,
,
Employees' Information Security Awareness and Behavior: A Literature Review, 2013 46th Hawaii International Conference on System Sciences, pp.2978-2987, 2013. ,
The development and evaluation of an information security awareness capability model: linking ISO/IEC 27002 controls with awareness importance, capability and risk, 2015. ,
An Exploratory Study of Current Information Security Training and Awareness Practices in Organizations, 51st Hawaii International Conference on System Sciences, pp.1-10, 2018. ,
Determining employee awareness using the Human Aspects of Information Security Questionnaire (HAIS-Q) ,
, Computers & Security, vol.42, pp.165-176, 2014.
,