TOPSIS-based framework for evaluating employee cybersecurity risk
This paper presents the development and initial validation of a TOPSIS-based framework for evaluating employee cybersecurity risk (TFEECR). The framework offers a structured and objective approach to assessing multiple dimensions of employee behavior and attitudes toward cybersecurity. It integrates...
Saved in:
| Main Author: | |
|---|---|
| Format: | Article |
| Language: | English |
| Published: |
Croatian Operational Research Society
2025-01-01
|
| Series: | Croatian Operational Research Review |
| Subjects: | |
| Online Access: | https://hrcak.srce.hr/file/473262 |
| Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
| _version_ | 1832540850710642688 |
|---|---|
| author | Katarina Kostelić |
| author_facet | Katarina Kostelić |
| author_sort | Katarina Kostelić |
| collection | DOAJ |
| description | This paper presents the development and initial validation of a TOPSIS-based framework for evaluating employee cybersecurity risk (TFEECR). The framework offers a structured and objective approach to assessing multiple dimensions of employee behavior and attitudes toward cybersecurity. It integrates the Technique for Order of Preference by Similarity to the Ideal Solution (TOPSIS) with Saaty’s criteria weighting, enabling a comprehensive evaluation across five criteria: knowledge, compliance, risky behaviors, attitudes, and training. The framework is validated using simulated data, and it showed robustness in differentiating between high- and low-risk employees. Such results are useful for organizations that want to implement targeted interventions. A sensitivity analysis highlights the framework's adaptability to various settings. This conceptual framework lays the groundwork for future empirical validation and practical application in enhancing organizational cybersecurity. |
| format | Article |
| id | doaj-art-f226587390de420794c4c8b825bccb85 |
| institution | Kabale University |
| issn | 1848-0225 1848-9931 |
| language | English |
| publishDate | 2025-01-01 |
| publisher | Croatian Operational Research Society |
| record_format | Article |
| series | Croatian Operational Research Review |
| spelling | doaj-art-f226587390de420794c4c8b825bccb852025-02-04T14:04:56ZengCroatian Operational Research SocietyCroatian Operational Research Review1848-02251848-99312025-01-01161314410.17535/crorr.2025.0003TOPSIS-based framework for evaluating employee cybersecurity riskKatarina Kostelić0Faculty of Informatics, Juraj Dobrila University of Pula,, Pula, CroatiaThis paper presents the development and initial validation of a TOPSIS-based framework for evaluating employee cybersecurity risk (TFEECR). The framework offers a structured and objective approach to assessing multiple dimensions of employee behavior and attitudes toward cybersecurity. It integrates the Technique for Order of Preference by Similarity to the Ideal Solution (TOPSIS) with Saaty’s criteria weighting, enabling a comprehensive evaluation across five criteria: knowledge, compliance, risky behaviors, attitudes, and training. The framework is validated using simulated data, and it showed robustness in differentiating between high- and low-risk employees. Such results are useful for organizations that want to implement targeted interventions. A sensitivity analysis highlights the framework's adaptability to various settings. This conceptual framework lays the groundwork for future empirical validation and practical application in enhancing organizational cybersecurity.https://hrcak.srce.hr/file/473262cybersecurity risk assessmentemployee behaviorMCDMrisk managementTOPSIS framework |
| spellingShingle | Katarina Kostelić TOPSIS-based framework for evaluating employee cybersecurity risk Croatian Operational Research Review cybersecurity risk assessment employee behavior MCDM risk management TOPSIS framework |
| title | TOPSIS-based framework for evaluating employee cybersecurity risk |
| title_full | TOPSIS-based framework for evaluating employee cybersecurity risk |
| title_fullStr | TOPSIS-based framework for evaluating employee cybersecurity risk |
| title_full_unstemmed | TOPSIS-based framework for evaluating employee cybersecurity risk |
| title_short | TOPSIS-based framework for evaluating employee cybersecurity risk |
| title_sort | topsis based framework for evaluating employee cybersecurity risk |
| topic | cybersecurity risk assessment employee behavior MCDM risk management TOPSIS framework |
| url | https://hrcak.srce.hr/file/473262 |
| work_keys_str_mv | AT katarinakostelic topsisbasedframeworkforevaluatingemployeecybersecurityrisk |