Sailing into Cyber Awareness: Exploring Determinants of Security Behaviour Among Seafarers
Keywords:
Maritime cybersecurity, cybersecurity awareness, Health Belief Model, maritime digitalizationAbstract
The maritime industry is increasingly vulnerable to cyber threats, as demonstrated by the 2017 Maersk cyber-attack, which exposed the fragility of global shipping operations. With the growing integration of digital technologies into shipboard systems, ensuring robust cybersecurity awareness among maritime personnel is more crucial than ever. However, empirical research on the human and behavioural factors influencing cybersecurity awareness in maritime contexts remains limited. Thus, this study aims to identify the determinants of cybersecurity awareness (self-efficacy, perceived benefits, cues to action, and perceived susceptibility) among Malaysian seafarers. Grounded in the Health Belief Model—a well-established framework from preventive healthcare adapted in this study to understand users’ computer security behaviour. This study employs a quantitative approach to examine hypothesised relationships among these variables. Data were collected through structured questionnaires administered to shipboard personnel who regularly operate computer systems. Findings reveal that self-efficacy, perceived benefits and cues to action significantly contribute to improving cybersecurity awareness. In contrast, perceived susceptibility emerged as a weaker predictor. This is likely due to seafarers’ limited experience with actual cyber incidents and the common belief that such threats mainly affect shore-based systems. Incident-based training and realistic simulations are recommended to clearly demonstrate the operational impact of cyber-attacks on shipboard environments. This study contributes to the growing body of literature on maritime cybersecurity by addressing a gap concerning human factors in information security behaviour. It offers practical implications for maritime organisations, shipping companies, and policymakers seeking to strengthen cyber resilience. Promoting continuous training and awareness initiatives can help foster a proactive cybersecurity culture among seafarers and mitigate risks associated with human error in digital maritime operations.
