Abstract:
The protection of assets of organizations became one of the major aspects that organizations have to deal with. The issue is too serious when it comes to financial organizations due to their sensitivity to data security attacks. Security breach incidents can happen in an organization no matter how well the technology is protected. The main reason for this is employees’ improper conduct or lack of action that leads to the majority of information security incidents. Educating employees to improve information security awareness plays a significant part in securing organizational environments. Although, best practice, standards provide a set of minimum information security awareness controls that should implement. This study proposes an information security awareness training program to improve knowledge of information security and improves employee behavior for a private financial organization in Libya