Understanding human aspects for an effective information security management implementation

In today's world, information security is a trending as well crucial topic for both individuals and organisations. Cyber attacks cause financial loss businesses with data breaches production loss. Data can result in of reputation, reduced customer loyalty, fines. Also due to cyber attacks, business continuity affected so that organisations cannot provide continuous production. Therefore, should reduce risks by managing their security. For this purpose, they may use ISO/IEC 27001 management standard. 27001:2013 includes 114 controls are technical organisational level. However, the practice management, individuals' behaviour could be underestimated. Herein, technology alone guarantee safety assets organisations, thereby range human aspects taken into consideration. study, importance respect implementation presented. The present study extensively analyses collected from survey 630 people. results reliability measures confirmatory factor analysis support scale study.