A Review of Security Awareness Approaches With Special Emphasis on Gamification

since the cybersecurity needs have increased, many companies have implemented awareness-raising campaigns to guarantee their workers are educated about and aware of its risks and safe operation. Technological solutions can not necessarily provide full defense on their own, since employees pose a huge threat to information security and also play an essential part in the willingness of companies to meet security protection criteria. Rising employee knowledge about the security policy of the organization plays a critical role in the successful establishment of policies. The development of diverse and useful security awareness programs remains the best way to increase security awareness. Several approaches have been used to increase security awareness and behavior among users. However, the effectiveness of these approaches remains an open question. Concepts of gamification have become more popular recently and have been used to teach people a wide variety of topics such as security awareness. This paper investigates the most recent researches on cybersecurity awareness. The paper highlights the major obstacles in successfully implementing security awareness among users together with the main factors required to aware of different peoples most effectively. Finally, the paper shows how gamification being used for security awareness among other techniques with the gaps in those methods and suggests recommendations on how to deliver information security awareness effectively.