Ruslan Rustamov
CYSE201S
October 2, 2025
Source of Article: https://cybercrimejournal.com/menuscript/index.php/cybercrimejournal/article/view/438/124
Introduction
I read the article “Perceived Security Risks and Cybersecurity Compliance
Attitude: Role of Personality Traits and Cybersecurity Behavior” and want to say how
examines personality influences cybersecurity compliance. The authors argue that even
with strong technology, the systems remain vulnerable because people can ignore or even
try to break rules. I agree with this point, since I have seen how my friends and
classmates or even my family members reuse the same password everywhere or click on
suspicious links without thinking that these links can be dangerous.
Research Question
The main research question is whether the Big Five personality traits (openness,
conscientiousness, extraversion, agreeableness, and neuroticism) predict cybersecurity
compliance attitudes. The independent variables are the five traits, while the dependent
variable is compliance behavior, meaning how likely someone is to follow rules. The study also introduces perceived risk as a moderator and cybersecurity behavior as a mediator. In few words, if people feel the risk is real their personality has a stronger effect on their actions because they start thinking about it more and they become more afraid.
Methods
The researchers surveyed 259 participants and used standardized scales to measure
personality, risk perception, and behavior. The data was analyzed with Structural
Equation Modeling (SEM) using STATA software. Before reading this article, I didn’t
know about SEM but from the explanation which I read it seems like a method that
allows researchers to test many relationships at once instead of just comparing two
things. I think this approach makes sense for a study like this, since personality and
behavior are not easy to understand.
Results
The results showed that conscientious individuals were more likely to follow
security rules, which makes sense because they are usually organized and careful. People
with high neuroticism behaved inconsistently but became more compliant when they felt
the risk was serious. This finding feels very realistic to me. In my own experience, many
people only start being cautious after something bad happens, like getting their social
media hacked.
Conclusion
In conclusion this article highlights that cybersecurity is not just technical but also
deeply social and psychological. The study has some limits, like relying on surveys, but
its main idea is clear and convincing. I agree with the authors, and I think organizations
should combine technical defenses with programs that raise awareness and explain risks
in ways people can understand.
References
Ghaleb, M. M. S., & Sattarov, A. (January-June 2025). Perceived Security Risks and
Cybersecurity Compliance Attitude: Role of Personality Traits and Cybersecurity Behavior.
International Journal of Cyber Criminology, 19(1), 23-49