The joint project ITS.APT pursues the goal of extending this classic test method by the human factor, that is, the users of the IT infrastructure. The project will develop new methods to measure users' IT security awareness. The extent to which the security awareness of individuals plays a role in attacks on the IT infrastructure has not been proven to be practicable using traditional scientific measurement tools. Within the scope of the project, an easily quantifiable indicator "IT security awareness" is to be developed, which offers advantages, for example, in terms of comparability, costs and time required for collection.
In a comprehensive field test with subsequent evaluation in one of the largest European centers for medical care, the University Hospital Schleswig-Holstein, it is examined which parameters are decisive for the IT security awareness of users. In this environment, the effects of security-related incidents are particularly serious and the demands on data protection are particularly high.