Awareness nach Maß – Künstliche Intelligenz in der Informationssicherheit
摘要
When employees handle information correctly, the overall information security of an organization increases. Employees’ Information Security Awareness (ISA) determines whether they behave securely or not. ISA is a cognitive and affective construct influenced by many individual factors such as knowledge, emotions, the behavior of others in the social environment, and attitudes, and should therefore be promoted as individually as possible. Artificial Intelligence (AI) has the potential to rapidly capture personality traits of individuals as well as their environment and derive tailored measures to enhance ISA based on their current knowledge, preferences, working situation and learning speed. The literature analysis has shown that there are already promising studies and prototypical implementations of AI-based adaptive learning platforms, individualized training measures, gamified learning environments, and automated processes aimed at improving ISA. However, large-scale implementations and studies on the (long-term) effectiveness of such measures are still lacking. Current challenges also include the integration of AI-based systems into organizational information security concepts as well as open questions regarding regulatory compliance and the responsible use of AI.