Abstract:

Despite innovative security technologies designed to safeguard information assets, organisations continue to face cyber attacks. Accordingly, inadequate Information Security Awareness (ISA) of users can lead to cyber attacks in an organisation. This paper was to examine the ISA models for the information systems users’ and then proposed a model for the Financial Management Information Systems (FMIS) within the models of the information security theory. The problem addressed was that FMIS threats occur if users do not comply with the information security policies. Quantitative conducted to examine between factors and ISA of FMIS users. Questionnaire used to collect data. The unit of analysis comprises is the FMIS users in the departments of the Ministry of Finance and National Economy (MoFNE) in Sudan. Based on the research findings, there was statistically significant positive relationship between independent variables (Policies, Motivation, Top Management Support, and Formalization) and ISA of users; in addition, there is a weak relationship between Centralization and Prior of Employment and the dependent variable (ISA). The study has concluded that developing countermeasures alone without training and awareness users might not produce the sheltered environment required. Furthermore, ISA is a crucial factor to increase FMIS security.