Abstract:

Technology changed the way people live and work through adding competitive advantages and values of cost efficiency, information availability, knowledge documentation and communication improvement. However, lack of security is a critical issue that ICT has to deal with. Human factor is a widely common cause to be highly considered when planing to combat technology breaches and also to reduce cybercrime incidents in organisations and companies. Cybersecurity awareness is the approach to bring safety regulation back to people, employees and students attention. In order to do so, organisations seek to establish learning opportunities to their employees introducing to them informal learning, mind change campaigns and training approach. This study was aimed at investigating and conducting a literature review to better identify the extent of which teaching of and learning interventions of cybersecurity were significantly discussed and covered. A systematic literature review was conducted using PRISMA guidelines to collect the data out of peer reviewed academic articles. Inclusion criteria includes 28 studies highlighting four main phases of implementing cybersecurity learning interventions, mainly planing phase, content with delivery, teaching and evaluation. In order to reach a consensus of an effectivness learning intervention for cybersecurity, included research articles were screened, extracted and synthesised. Results are presented and discussed in the light of answering the research questions. Findings highlights the importance of investment in employees training, putting pedagogy before technology, offering innovative training techniques together with individual readiness to better changing people behaviour in Saudi Arabia in terms of cybersecurity awareness. In addition, four components have been identified to better offering effective education and training programs for raising people awareness towards cybersecurity. Mainly Planing strategies carrying policies and culture considerations, developing interactive contents carried by appropriate learning approach such as gamification, and regularly conducting evaluation process to better assess the effectiveness of learning provided.

Keywords:

Cybersecurity awareness, Saudi Arabia, learning interventions, systematic review.