Towards Assessing Critical Infrastructures Cyber-Security Culture During Covid-19 Crisis: A Tailor-Made Survey
This work aims to provide a tool for critical infrastructure operators to assess their cybersecurity culture, which was potentially impacted by the unique working conditions during the COVID-19 pandemic. It is an incremental contribution to cybersecurity assessment methodologies.
This paper describes the design and development of a tailor-made survey to assess the cybersecurity culture of critical infrastructures during the COVID-19 crisis. The survey is built upon a security culture framework with 10 dimensions, 52 domains, and two pillars (organizational and individual).
This paper outlines the design and development of a survey targeting the cyber-security culture assessment of critical infrastructures during the COVID-19 crisis, when living routine was seriously disturbed and working reality fundamentally affected. Its foundations lie on a security culture framework consisted of 10 different security dimensions analysed into 52 domains examined under two different pillars: organizational and individual. In this paper, a detailed questionnaire building analysis is being presented while revealing the aims, goals and expected outcomes of each question. It concludes with the survey implementation and delivery plan following a number of pre-survey stages each serving a specific methodological purpose.