Human-Centric Cybersecurity : A Strategic, Evidence-Based Approach

Notwithstanding the substantial investments in cybersecurity, organizations continue to succumb to breaches caused by human factors. This study investigates the human elements that contribute to cybersecurity vulnerabilities and proposes effective strategies to mitigate them. Through a mixed-methods approach, involving surveys (n = 100) and expert interviews (n = 35), we identify key vulnerabilities : limited awareness, susceptibility to phishing, and weak password practices. Our research reveals a concerning gap between security training and actual behavioural change. To combat these vulnerabilities, we advocate for a multi-faceted approach : (1) continuous, interactive security awareness training, (2) fostering a strong security culture, and (3) overcoming resource constraints and employee resistance. By implementing this comprehensive strategy, organizations can significantly strengthen their human firewall and reduce the risk of cyberattacks. This study contributes to the understanding of human factors in cybercrime and provides actionable insights for organizations to strengthen their digital defences.