How can organizations better protect themselves from computer-related fraud? This paper addresses the critical issue of computer misuse, arguing that a pragmatic and balanced approach to security controls is essential for minimizing losses. By reviewing real-world security breaches, the paper advocates for a holistic strategy that encompasses technical, formal, and informal interventions. The paper suggests that organizations often focus too heavily on technical solutions, neglecting the importance of employee training, clear policies, and a strong security culture. It emphasizes the need to consider the human element in security and to implement a multi-layered approach that addresses both technological and behavioral vulnerabilities. This analysis offers practical guidance for organizations seeking to improve their cybersecurity posture. By adopting a balanced approach that incorporates technical safeguards with human-centered strategies, businesses can effectively mitigate the risks of computer misuse and protect their valuable assets.
This paper appears in Information Management & Computer Security. Its focus aligns perfectly with the journal's interest in practical approaches to securing information and computer systems. By addressing organizational strategies and human factors, the study contributes valuable insights for professionals in information security management.