ABSTRACT
In any book, guide, or article on information security, it is impossible to avoid a discussion on the role of
people in an information security program. Information security, like everything else, is a human
enterprise and is influenced by factors that impact the individual. It is well recognized that the greatest
information security danger to any organization is not a particular process, technology, or equipment;
rather, it is the people who work within the “system” that hide the inherent danger.