Towards Assessing Critical Infrastructures Cyber-Security Culture During Covid-19 Crisis: A Tailor-Made Survey

TL;DR

This paper presents a tailored survey to assess the cybersecurity culture of critical infrastructures during COVID-19, focusing on organizational and individual dimensions affected by the crisis.

Contribution

It introduces a comprehensive framework and methodology for evaluating cybersecurity culture in critical infrastructures during disruptive events like the COVID-19 pandemic.

Findings

Survey design and development process detailed

Framework covers 10 security dimensions and 52 domains

Implementation plan for the survey outlined

Abstract

This paper outlines the design and development of a survey targeting the cyber-security culture assessment of critical infrastructures during the COVID-19 crisis, when living routine was seriously disturbed and working reality fundamentally affected. Its foundations lie on a security culture framework consisted of 10 different security dimensions analysed into 52 domains examined under two different pillars: organizational and individual. In this paper, a detailed questionnaire building analysis is being presented while revealing the aims, goals and expected outcomes of each question. It concludes with the survey implementation and delivery plan following a number of pre-survey stages each serving a specific methodological purpose.