Organizations are increasingly wrestling with the task of safeguarding their digital and physical assets, especially as security threats, both from within and outside, grow more complex. While technological solutions are crucial, human behavior remains one of the most significant and vulnerable aspects of corporate security systems. This paper examines the key role of Human Resource Management (HRM) in fostering and bolstering a solid corporate security culture. It examines how various HRM functions, including recruitment, onboarding, employee training, policy enforcement, and performance evaluations, can be effectively leveraged to shape employee behavior, decrease human error, and strengthen the overall resilience of the organization. This paper introduces a novel viewpoint on Human Risk Management, which seeks to identify, assess, and mitigate the vulnerabilities associated with human actions. This includes issues like falling for phishing scams, insider threats, and mishandling data. It specifically addresses the challenges that come with hybrid and remote work environments, where security risks can increase due to the spread of technology and communication hurdles. The paper highlights how essential it is to align security awareness programs with the overall culture and values of the organization. It suggests moving away from the usual compliance-focused training and instead adopting more engaging, behavior-driven approaches.
Stanojević et al. (Wed,) studied this question.