Assessment of information security literacy and its risk factors of disease control and prevention information system in Jinshan District / 上海预防医学

ABSTRACT

Objective:To assess the current situation of information security literacy， and determine its factors. Methods:Literature review and Delphi method were used to design a questionnaire on information security literacy. All users of disease control information system in Jinshan District，Shanghai were investigated. The questionnaire included information security related knowledge， awareness， role cognition， and behavior. Results:The overall proportion of information security literacy was determined to be 7.98%. Information security knowledge， awareness， role cognition， and behavior was identified in 17.18%， 37.42%， 62.58%， and 38.04% of the users， respectively. Sex， age and type of information system account were associated with the information security literacy. Conclusion:Information security literacy remains low in Jinshan District， which may not meet the current requirement in work. Particularly， information security behavior is at risk， which warrants further improvement in the information security management.