Can cybersecurity culture be measured, and how can it drive national policy?

Background NorSIS has studied what they term cybersecurity culture in Norway. The purpose of their study has been to help designing effective cybersecurity practices and to understand what security regulations Norwegians will typically accept. The study wants to measure culture, a concept that does not easily lend itself to quantification or simple KPI’s. The attempt… Continue reading Can cybersecurity culture be measured, and how can it drive national policy?