<p>Recent ransomware incidents at higher education institutions in Germany illustrate how the ongoing digitalization of research, teaching, and administration increases vulnerability and makes security awareness a&#xa0;strategic management task. This article explains awareness at the intersection of openness, resilience, and digital sovereignty. Theoretically, behavioral and learning psychology models (including Self-Determination Theory and the Theory of Planned Behavior) are linked with organizational perspectives on governance, culture, and communication. Emphasis is placed on e‑learning as a&#xa0;key element.</p><p>Based on this, theory-based assumptions were derived and methodologically validated through semi-structured expert interviews with information security officers and IT managers from several higher education institutions. The findings consolidate current practical experiences, among them the freely available offer <i>SecAware.nrw, </i>and identify three core problems: limited human and financial resources, unclear responsibilities and governance, and a&#xa0;highly heterogeneous target group.</p><p>The paper derives practical recommendations for higher education and concludes with a&#xa0;research agenda that outlines user perspectives and takes greater account of motivation-related psychological mechanisms in the design of e‑learning measures. This allows e‑learning-based measures to be further developed in line with the target group and a&#xa0;sustainable safety culture to be established in higher education.</p>

错误:搜索内容不能为空,请输入英文关键词
错误:关键词超出字数限制,请精简
高级检索

Security Awareness als institutionelles Anliegen: Voraussetzungen, Herausforderungen und Gestaltungsräume für NRW-Hochschulen

  • Miriam Naß,
  • Norbert Pohlmann,
  • Stephanie Scheja,
  • Andreas Harrer

摘要

Recent ransomware incidents at higher education institutions in Germany illustrate how the ongoing digitalization of research, teaching, and administration increases vulnerability and makes security awareness a strategic management task. This article explains awareness at the intersection of openness, resilience, and digital sovereignty. Theoretically, behavioral and learning psychology models (including Self-Determination Theory and the Theory of Planned Behavior) are linked with organizational perspectives on governance, culture, and communication. Emphasis is placed on e‑learning as a key element.

Based on this, theory-based assumptions were derived and methodologically validated through semi-structured expert interviews with information security officers and IT managers from several higher education institutions. The findings consolidate current practical experiences, among them the freely available offer SecAware.nrw, and identify three core problems: limited human and financial resources, unclear responsibilities and governance, and a highly heterogeneous target group.

The paper derives practical recommendations for higher education and concludes with a research agenda that outlines user perspectives and takes greater account of motivation-related psychological mechanisms in the design of e‑learning measures. This allows e‑learning-based measures to be further developed in line with the target group and a sustainable safety culture to be established in higher education.