Abstract
Appropriate behavior is indeed a major factor in Security culture, along with the mechanisms available to supervise and sanction, when needed be, wrongful actions. The concept of Security culture was interlinked with Information Security, thus spawning a new concept of Information Security culture, that later evolved to Cybersecurity Culture, which is a concept that has been developed in CSS’s all over Europe and the world. Cybersecurity culture, as opposed to Security culture, is a term that can be applied not only to companies, organizations or institutions, but also to the general public of a given nation or even a region. CSS’s have been the instrument to explain and develop this term.
A Shift in the Security Paradigm—Global Challenges: is Europe ready to meet them? Edited by J. Martín Ramírez, and Jerzy Bizieweski. © 2020 Springer International. Submitted: December 15, 2019. Accepted: January 29, 2020.
This is a preview of subscription content, log in via an institution to check access.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
References
Cayón Peña J, García-Segura LA (2014) The critical role of education in every cyber defense strategy. Northern Kentucky Law Rev 41:459–469
Coats D (2018) Worldwide threat assessment of the US Intelligence Community. Accessed from: https://www.dni.gov/files/documents/Newsroom/Testimonies/2018-ATA—Unclassified-SSCI.pdf
European Commission (2006) A strategy for a Secure Information Society-“Dialogue, Partnership and empowerment. Accessed from: https://ec.europa.eu/information_society/doc/com2006251.pdf
European Commission (2013) Cybersecurity strategy of the European Union: an open, safe and secure cyberspace. Accessed from: https://ccdcoe-admin.aku.co/wp-content/uploads/2018/11/EU-130207-CSS-1.pdf
European Parliament (2016) Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation). Accessed from: https://eur-lex.europa.eu/eli/reg/2016/679/oj
European Parliament (2019) Regulation (EU) 2019/881 of the European parliament and of the council of 17 April 2019 on ENISA (the European Union Agency for Cybersecurity) and on information and communications technology cybersecurity certification and repealing Regulation (EU) No 526/2013 (Cybersecurity Act). Accessed from: https://eur-lex.europa.eu/legal-content/EN/TXT/PDF/?uri=CELEX:32019R0881&from=EN
European Union Agency for Network and Information Security (ENISA) (2017) Cyber Security Culture in organisations. Accessed from: https://www.enisa.europa.eu/publications/cyber-security-culture-in-organisations
European Union Council (2003) A secure Europe in a better world. European security strategy. Accessed from: http://data.consilium.europa.eu/doc/document/ST-15895-2003-INIT/en/pdf
Global Commission on the Stability of Cyberspace (2019) Advancing cyberstability. Accessed from: https://cyberstability.org/wp-content/uploads/2019/11/Digital-GCSC-Final-Report-Nov-2019_LowRes.pdf
Howorth J (2002) The CESDP and the forging of a european security culture. Politique européenne 8(4):88–109. https://doi.org/10.3917/poeu.008.0088
International Telecommunications Union (ITU) (2018) Developing a national cybersecurity strategy. Accessed from: https://www.itu.int/dms_pub/itu-d/opb/str/D-STR-CYB_GUIDE.01-2018-PDF-E.pdf
International Telecommunications Union (ITU) (2019) Global cybersecurity index 2018. Accessed from: https://www.itu.int/dms_pub/itu-d/opb/str/D-STR-GCI.01-2018-PDF-E.pdf
Marinos L, Lourenço M (eds) (2019) ENISA Threat Landscape Report 2018. Accessed from: https://www.enisa.europa.eu/publications/enisa-threat-landscape-report-2018
Merrian-Webster (2020) Definition of cybersecurity. Accessed from: https://www.merriam-webster.com/dictionary/cybersecurity
Roer K (2015) Building a security culture. IT Governance Publishing, Cambridgeshire
Ruighaver AB, Maynard SB, Chang S (2007) Organisational security culture: extending the end-user perspective. Comput Secur 26(2007):56–62
Schlienger T, Teufel S (2002) Information security culture. The socio-cultural dimension in information security management. In: Ghonaimy et al (eds) Security in the information society. IFIP international federation for information processing. Accessed from: https://link.springer.com/content/pdf/10.1007/978-0-387-35586-3_15.pdf
United Nations Conference on Trade and Development (UNCTAD) (2016) Data protection regulations and international data flows: implications for trade and development. Accessed from: https://unctad.org/en/PublicationsLibrary/dtlstict2016d1_en.pdf
World Economic Forum (2019) The global risks report 2019. Accessed from: http://www3.weforum.org/docs/WEF_Global_Risks_Report_2019.pdf
Author information
Authors and Affiliations
Corresponding author
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2020 The Editor(s) (if applicable) and The Author(s), under exclusive license to Springer Nature Switzerland AG
About this chapter
Cite this chapter
García-Segura, L.A. (2020). The Necessary Link Between Security Culture and Data Protection in the European Union. In: Ramírez, J.M., Biziewski, J. (eds) A Shift in the Security Paradigm. Advanced Sciences and Technologies for Security Applications. Springer, Cham. https://doi.org/10.1007/978-3-030-43253-9_15
Download citation
DOI: https://doi.org/10.1007/978-3-030-43253-9_15
Published:
Publisher Name: Springer, Cham
Print ISBN: 978-3-030-43252-2
Online ISBN: 978-3-030-43253-9
eBook Packages: Political Science and International StudiesPolitical Science and International Studies (R0)