ABSTRACT
To develop an interface for effective cyber security, one must think about broader issues than a traditional graphical user interface (GUI). As such, this chapter outlines a series of issues focusing on the behavior of individuals when interacting with information devices and systems. After a brief introduction, we begin by defining cyber security from the end user’s perspective. We highlight behaviors related to the security, compliance, risk, and damage of an organization’s information system. We then move to a discussion of the interaction of humans and technology from a cyber security point of view, touching on system complexity, trust in information technology (IT), and the perspective taken by some who believe that effective cyber security behaviors interfere with one’s ability to perform a job. As many jobs are now computer mediated, with individuals working in virtual teams, we consider issues associated with trust in virtual teams. We argue that we must be able to quantify the latent growth and decline of trust in individuals if we are to effectively model the nature of trust between individuals, technology, and systems. Then, we consider vigilance and how it affects cyber security IT professionals. We note the importance of cognitive load and alarm fatigue in influencing cyber security behavior and offer some points toward balancing technology and human solutions. The final two sections stress the importance of social engineering through the use of cyber intelligence and cyber counterintelligence in the human–technology interface.
