DEVELOPING A MEASUREMENT SCALE TO ASSESS THE PERCEPTION OF CYBERSECURITY AMONG EMPLOYEES IN THE MARITIME INDUSTRY

Year 2024, Volume: 20 Issue: 2, 135 - 162, 06.11.2024

Cihat Aşan

https://doi.org/10.56850/jnse.1485985

Abstract

The emergence of Industry 4.0, within the historical context of industrial revolutions shaped by human needs, signifies a rapid integration of technology into society. Despite societal concerns about technology displacing human labor, cybersecurity is a significant challenge associated with Industry 4.0. This study aims to create a "5-point Likert Scale" to assess the conceptual awareness of cybersecurity among maritime transportation sector employees. The "Cybersecurity Awareness Scale" consists of 43 queries and is subjected to rigorous validity and reliability analyses. Administered to 200 individuals in Istanbul, Türkiye, the scale revealed varying awareness levels, with information technology personnel showing high awareness and others exhibiting comparatively lower awareness, both organizationally and regarding individual security vulnerabilities. This scale contributes significantly to evaluating companies' cybersecurity awareness, aiding them in identifying strengths and weaknesses and implementing necessary measures. Future research can deepen theoretical discussions by utilizing the scale to uncover regional and sectoral differences in cybersecurity awareness. Recommendations include larger sample sizes for subsequent studies, enabling comprehensive comparisons and enriching the literature on this subject.

Keywords

Maritime industry, Scale development, Cybersecurity, Situational awareness.

References

• Abrahams, T. O., Farayola O. A., Kaggwa S., Uwaoma P. U., Hassan A. O., & Dawodu S. O. (2024). Cybersecurity Awareness and Education Programs: A Review of Employee Engagement and Accountability. Computer Science & IT Research Journal, 5(1), 100-119. https://doi.org/10.51594/csitrj.v5i1.708
• Bielawski, A., & Lazarowska, A. (2021). Discussing cybersecurity in maritime transportation. Maritime Technology and Research, 4(1), 252151. https://doi.org/10.33175/mtr.2022.252151
• Bolat, P., & Kayişoğlu, G. (2019). Antecedents and Consequences of Cybersecurity Awareness: A Case Study for Turkish Maritime Sector. Journal of ETA Maritime Science, 7(4), 344–360. https://doi.org/10.5505/jems.2019.85057
• Chaudhary, S. (2024). Driving behavior change with cybersecurity awareness. Computers & Security, 142, 103858. https://doi.org/10.1016/j.cose.2024.103858
• Chaudhary, S., Gkioulos, V., & Katsikas, S. (2023). A quest for research and knowledge gaps in cybersecurity awareness for small and medium-sized enterprises. Computer Science Review, 50, 100592. https://doi.org/10.1016/j.cosrev.2023.100592
• Clark, J. (2018). Cybercrime in the shipping industry. A Presentation by Shipping Hill Dickinson LLP. https://globalmaritimehub.com/wp-content/uploads/attach_908.pdf
• Fitton, M. O., Prince, D., & Lacy, M. (2015). The Future of Maritime Cyber Security., Lancaster University’s Faculty of Science and Technology. https://eprints.lancs.ac.uk/id/eprint/72696/
• Fornell, C., & Larcker, D. F. (1981). Evaluating Structural Equation Models with Unobservable Variables and Measurement Error. Journal of Marketing Research, 18(1), 39. https://doi.org/10.2307/3151312
• Gupta, B. B., Tewari, A., Jain, A. K., & Agrawal, D. P. (2017). Fighting against phishing attacks: state of the art and future challenges. Neural Computing and Applications, 28(12), 3629–3654. https://doi.org/10.1007/s00521-016-2275-y
• Hair Jr., J. F., Gabriel, M. L. D. da S., & Patel, V. K. (2014). AMOS Covariance-Based Structural Equation Modeling (CB-SEM): Guidelines on Its Application as a Marketing Research Tool. Brazilian Journal of Marketing, 13(2), 44–55. https://doi.org/10.5585/remark.v13i2.2718
• Hasanspahić, N., Vujičić, S., Frančić, V., & Čampara, L. (2021). The Role of the Human Factor in Marine Accidents. Journal of Marine Science and Engineering, 9(3), 261. https://doi.org/10.3390/jmse9030261
• Hong W. C. H., Chun Y. C., Liu J., Zhang Y. F., Lin Lei V. N., & Xu X. S. (2023). The influence of social education level on cybersecurity awareness and behavior: a comparative study of university students and working graduates. Educ Inf Technol 28, 439–470 (2023). https://doi.org/10.1007/s10639-022-11121-5
• Hu, L., & Bentler, P. M. (1998). Fit indices in covariance structure modeling: Sensitivity to underparameterized model misspecification. Psychological Methods, 3(4), 424–453. https://doi.org/10.1037/1082-989X.3.4.424
• Jensen, L. (2015). Challenges in Maritime Cyber-Resilience. Technology Innovation Management Review, 5(4), 35–39. https://doi.org/10.22215/timreview/889
• Kanwal, K., Shi, W., Kontovas, C., Yang, Z., & Chang, C.-H. (2022). Maritime cybersecurity: are onboard systems ready? Maritime Policy & Management, 1–19. https://doi.org/10.1080/03088839.2022.2124464
• Kapalidis, P. (2020). Cybersecurity at Sea. In L. Otto (Ed.), Global Challenges in Maritime Security. Advanced Sciences and Technologies for Security Applications. (pp. 127–143). https://doi.org/10.1007/978-3-030-34630-0_8
• Karaca, İ., & Söner, Ö. (2023). An Evaluation of Students’ Cybersecurity Awareness in the Maritime Industry. International Journal of 3D Printing Technologies and Digital Industry, 7(1), 78–89. https://doi.org/10.46519/ij3dptdi.1236264
• Köseoğlu, M. C., Çetin, O., & Yıldırım, F. A. (2022). Maritime Psychology: A Study on Evaluation of Seafarers Aggression Tendencies. Dokuz Eylül University Maritime Faculty Journal, 14(1), 26–50. https://doi.org/DOI: 10.18613/deudfd.1130265
• Larsen, M. H., & Lund, M. S. (2021). Cyber Risk Perception in the Maritime Domain: A Systematic Literature Review. IEEE Access, 9, 144895–144905. https://doi.org/10.1109/ACCESS.2021.3122433
• Mcquade, M. (2018). The Untold Story of NotPetya, the Most Devastating Cyberattack in History. https://www.wired.com/story/notpetya-cyberattack-ukraine-russia-code-crashed-the-world/
• Mehdiyev, E., Uğurlu, C. T., & Usta, H. G. (2017). The Validity and Reliability Study of English Language Learning Difficulties Scale. Journal of Theory and Practice in Education, 13(3), 411–429. https://dergipark.org.tr/tr/download/article-file/330368
• Mraković, I., & Vojinović, R. (2019). Maritime Cyber Security Analysis – How to Reduce Threats? Transactions on Maritime Science, 8(1), 132–139. https://doi.org/10.7225/toms.v08.n01.013
• Nguyen, L. (2018, February). e-paper: Collaboration in the Shipping Industry: Innovation and Technology. KNect365. https://informaconnect.com/epaper-collaboration-in-the-shipping-industry-innovation-and-technology/
• Nunnally, J. C. (1978). An Overview of Psychological Measurement. In Clinical Diagnosis of Mental Disorders (pp. 97–146). Springer US. https://doi.org/10.1007/978-1-4684-2490-4_4
• Nwankpa, J. K., & Datta, P. M. (2023). Remote vigilance: The roles of cyber awareness and cybersecurity policies among remote workers. Computers & Security, 130, 103266. https://doi.org/10.1016/j.cose.2023.103266
• Parizo, E. (2019). Maersk CISO Says NotPeyta Devastated Several Unnamed US firms. https://www.darkreading.com/omdia/maersk-ciso-says-notpeyta-devastated-several-unnamed-us-firms
• Perez, G. F. (2019). Cyber Situational Awareness and Cyber Curiosity Taxonomy for Understanding Susceptibility of Social Engineering Attacks in the Maritime Industry [Florida, Nova Southeastern University]. https://nsuworks.nova.edu/gscis_etd
• Progoulakis, I., Rohmeyer, P., & Nikitakos, N. (2021). Cyber Physical Systems Security for Maritime Assets. Journal of Marine Science and Engineering, 9(12), 1384. https://doi.org/10.3390/jmse9121384
• Sangwan, A. (2024). Human Factors in Cybersecurity Awareness. 2024 International Conference on Intelligent Systems for Cybersecurity (ISCS), 1–7. https://doi.org/10.1109/ISCS61804.2024.10581139
• S. de Vleeschhouwer. (2017). Safety of data. The risks of cyber security in the maritime sector. https://maritimetechnology.nl/media/NMT_Safety-of-data-The-risks-of-cyber-security-in-the-maritime-sector.pdf
• Tam, K., & Jones, K. (2019). MaCRA: a model-based framework for maritime cyber-risk assessment. WMU Journal of Maritime Affairs, 18(1), 129–163. https://doi.org/10.1007/s13437-019-00162-2
• Tolossa, D. (2023). Importance of Cybersecurity Awareness Training for Employees in Business. Vidya - A Journal of Gujarat University, 2(2), 104–107. https://doi.org/10.47413/vidya.v2i2.206
• Tuomala, V. (2021). Maritime Cybersecurity. Before the risks turn into attacks. South-Eastern Finland University of Applied Sciences, Kotka. https://www.theseus.fi/bitstream/handle/10024/504156/URNISBN9789523443600.pdf;jsessionid=3A77CE1482EE9FA27DCFD59FED7562FB?sequence=2