Client-Centred Cybercrime Training: a Scottish case study

Research output: Contribution to conferencePaperpeer-review

1 Downloads (Pure)

Abstract

Background: The UK neoliberal government responsibilizes Small-to-Medium enterprises (SMEs) to take care of their own cyber-resilience, meaning that they do not receive any support if they fall victim to a cyber attack. Consequently, SMEs tend not to report cybercrimes.

Aim: The aim was to collaboratively develop, deliver, and evaluate a client-centred cybercrime training session with an accompanying booklet as means of achieving closure post-attack, upskilling an SME, increasing their knowledge and improving reporting.

Methods: We surveyed 9 staff of an attacked SME to elicit their training preferences; 6 staff members attended and 5 supplied feedback in the form of a post-training survey. From those who completed the survey, 2 staff members were interviewed. The results showed that the training helped some staff members take cyber-resilience into consideration because they supplied evidence of their learning either via the post-training survey or via the interviews.

Results: The training served to improve staff’s cyber-resilience awareness and skill-set to a limited degree. It became clear that the government’s responsibilization agenda deterred staff from reporting cybercrimes to Police Scotland.

Conclusions: Future work should engage with victimised SMEs and foster a trusting relationship. Academia can play a part in upskilling government-appointed cyber-resilience trainers.
Original languageEnglish
Number of pages33
Publication statusPublished - 5 Oct 2024
EventThe 2024 Dewald Roode Workshop on Information Systems Security Research - KSU Center, Kennesaw, United States
Duration: 4 Oct 20245 Oct 2024
https://www.kennesaw.edu/coles/centers/cyber-center/events/dewald-roode-workshop.php

Conference

ConferenceThe 2024 Dewald Roode Workshop on Information Systems Security Research
Abbreviated titleDRW2024
Country/TerritoryUnited States
CityKennesaw
Period4/10/245/10/24
Internet address

Keywords

  • cybercrime
  • responsibilisation
  • reporting
  • training
  • small-to medium-sized enterprises

Fingerprint

Dive into the research topics of 'Client-Centred Cybercrime Training: a Scottish case study'. Together they form a unique fingerprint.

Cite this