Motivating Cybersecurity Advocates: Implications for Recruitment and Retention
Julie M. Haney, Wayne Lutters
Given modern societys dependence on technological infrastructure vulnerable to cyber-attacks, the need to expedite cybersecurity adoption is paramount. Cybersecurity advocates are critical for promoting, educating, and facilitating the uptake of security best practices. Therefore, successfully recruiting and retaining advocates is of utmost importance. Accomplishing this requires an understanding of advocates motivations and incentives and how these may differ from other cybersecurity professionals. As the first study of its kind, we interviewed 28 cybersecurity advocates to learn about their work motivations. Findings revealed several drivers for cybersecurity advocacy work, most of which were intrinsic motivators. Motivations included interest in the field, sense of duty, self-efficacy, evidence of impact, comradery, and, to a lesser degree, awards/monetary compensation. We leverage these insights for recommendations on how to frame cybersecurity advocacy as a profession that fuels these motivations and how to maintain this across advocates careers.
Proceedings of the 2019 ACM SIGMIS Conference on Computer Personnel Research
June 20-22, 2019
ACM SIGMIS Conference on Computer Personnel Research
and Lutters, W.
Motivating Cybersecurity Advocates: Implications for Recruitment and Retention, Proceedings of the 2019 ACM SIGMIS Conference on Computer Personnel Research, Nashville, TN, [online], https://tsapps.nist.gov/publication/get_pdf.cfm?pub_id=927445
(Accessed September 24, 2021)