Malcolm Pattinson

Adelaide Research Fellow at The University of Adelaide

Schools

  • The University of Adelaide

Expertise

Links

Biography

The University of Adelaide

I am currently a Research Fellow and Information Security Consultant in the Adelaide Business School’s Human Aspects of Cyber Security (HACS) research group. Although I have been consulting, teaching and researching information security for many years, my time with HACS has been focussed primarily on human factors research relating to computer-based behaviour. I am also co-chair for the International Symposium on Human Aspects of Information Security & Assurance (HAISA) and we will be hosting the HAISA2017 conference in Adelaide in November, 2017. I am currently a Board Member of the Adelaide Chapter of ISACA and have the certifications CISA, CISM, CGEIT and CRISC.

Qualifications

Bachelor of Applied Science (Data Processing), University of South Australia (formerly South Australian Institute of Technology).

Master of Commerce (by research), Flinders University. Thesis topic: Evaluating Information Systems Security: An Application of Goal Attainment Scaling.

Doctor of Philosophy, University of Adelaide. Thesis topic: An Examination of Information System Risk Perceptions Using the Repertory Grid Technique (Awarded a Dean's Commendation for Doctoral Thesis Excellence).

Awards & Achievements

Certified Information Systems Auditor (CISA)

Certified Information Security Manager (CISM)

Certified in the Governance of Enterprise Information Technology (CGEIT)

Certified in Risk and Information Systems Control (CRISC)

Research Interests Information Security

Cyber Security

Human Aspects of Information and Cyber Security

Behavioural Information Security

Information System Risk Management

Information Technology Governance

Information Security Management

Compliance with Information Security Frameworks, Standards & Guidelines

Publications

  1. Pattinson, M., Butavicius, M., Parsons, K., McCormac, A., Calic, D. & Jerram, C., (In Press), “The Information Security Awareness of Bank Employees”, In S. Furnell & N. Clarke (Eds.) Proceedings of the 10th International Symposium on Human Aspects of Information Security & Assurance (HAISA 2016), Frankfurt, Germany, pp. 189-198. 
    
  2. Pattinson, M., Parsons, K., Butavicius, M., McCormac, A. & Calic, D., (In Press), “Assessing Information Security Attitudes: A comparison of two studies”, Information & Computer Security, Accepted 9th March 2016.
    
  3. Parsons, K., Butavicius, M., Pattinson, M., McCormac, A., Calic, D. & Jerram, C., (2015), “Do Users Focus on the Correct Cues to Differentiate Between Phishing and Genuine Emails?”, Proceedings of Australian Conference of Information Systems (ACIS), Adelaide, December, Article in Press.
    
  4. Butavicius, M., Parsons, K., Pattinson, M. & McCormac, A., (2015), “Breaching the Human Firewall: Social Engineering in Phishing and Spear-Phishing Emails”, Proceedings of Australian Conference of Information Systems (ACIS), Adelaide, December, Article in Press
    
  5. PATTINSON, M., BUTAVICIUS, M., PARSONS, K., MCCORMAC, A. & CALIC, D., (2015), “FACTORS THAT INFLUENCE INFORMATION SECURITY BEHAVIOUR: AN AUSTRALIAN WEB-BASED STUDY”, IN T. TRYFONAS, & I. ASKOXYLAKIS (EDS.) CONFERENCE PROCEEDINGS OF HUMAN ASPECTS OF INFORMATION SECURITY, PRIVACY, & TRUST (HCI 2015), LOS ANGELES, SPRINGER INTERNATIONAL, LNCS 9190, PP. 231-241.
    
  6. PATTINSON, M., BUTAVICIUS, M., PARSONS, K., MCCORMAC, A. & JERRAM, C., (2015), “EXAMINING ATTITUDES TOWARD INFORMATION SECURITY BEHAVIOUR USING MIXED METHODS”, IN S. FURNELL & N. CLARKE (EDS.) PROCEEDINGS OF THE 9TH INTERNATIONAL SYMPOSIUM ON HUMAN ASPECTS OF INFORMATION SECURITY & ASSURANCE (HAISA 2015), LESVOS, GREECE, PP. 57-70.
    
  7. Parsons, K., Young, E., Butavicius, M., McCormac, A., Pattinson, M. & Jerram, C., (2015), “The Influence of Organisational Information Security Culture on Cybersecurity Decision Making”, Journal of Cognitive Engineering and Decision Making: Special Issue on Cybersecurity Decision Making, Vol. 9, Iss. 2, pp. 117-129.
    
  8. Parsons, K., McCormac, A., Pattinson, M., Butavicius, M. & Jerram, C., (2015), “The Design of Phishing Studies: Challenges for Researchers”. Computers and Security: Special Issue on SEC 2013 Conference, Article in Press.
    
  9. PARSONS, K., MCCORMAC, A., PATTINSON, M., BUTAVICIUS, M., & JERRAM, C., (2014), “A STUDY OF INFORMATION SECURITY AWARENESS IN AUSTRALIAN GOVERNMENT ORGANISATIONS”, INFORMATION MANAGEMENT & COMPUTER SECURITY, VOL. 22, ISS. 4, PP. 334-345.
    
  10. PARSONS, K., MCCORMAC, A., BUTAVICIUS, M., PATTINSON, M. & JERRAM, C., (2014), “DETERMINING EMPLOYEE AWARENESS USING THE HUMAN ASPECTS OF INFORMATION SECURITY QUESTIONNAIRE (HAIS-Q)”, COMPUTERS & SECURITY, VOL. 42, PP. 165-176.

  11. PARSONS, K., MCCORMAC, A., PATTINSON, M., BUTAVICIUS, M. & JERRAM, C., (2014), "USING ACTIONS AND INTENTIONS TO EVALUATE CATEGORICAL RESPONSES TO PHISHING AND GENUINE EMAILS", IN N. L. CLARKE & S. M. FURNELL (EDS.) PROCEEDINGS OF THE 8TH INTERNATIONAL SYMPOSIUM ON HUMAN ASPECTS OF INFORMATION SECURITY & ASSURANCE (HAISA 2014), PLYMOUTH UK, JULY, PP. 30-41.

  12. PARSONS, K., MCCORMAC, A., PATTINSON, M., BUTAVICIUS, M. & JERRAM, C., (2013), "AN ANALYSIS OF INFORMATION SECURITY VULNERABILITIES AT THREE AUSTRALIAN GOVERNMENT ORGANISATIONS", PROCEEDINGS OF THE EUROPEAN INFORMATION SECURITY MULTI-CONFERENCE (EISMC 2013), LISBON, PORTUGAL, MAY, PP. 34-44.

  13. Pattinson, M., Jerram, C., Parsons, K., McCormac, A., & Butavicius, M., (2013), “Information Security Awareness: An Analysis of Knowledge, Attitude and Behaviour”, Proceedings of Control, Audit & Computer Security (CACS) 2013 Oceania conference, Adelaide, September.

  14. PARSONS, K., MCCORMAC, A., BUTAVICIUS, M., PATTINSON, M., & JERRAM, C., (2013), "THE DEVELOPMENT OF THE HUMAN ASPECTS OF INFORMATION SECURITY QUESTIONNAIRE (HAIS-Q)", IN HEPU DENG & CRAIG STANDING (EDS.) PROCEEDINGS OF THE 24TH AUSTRALASIAN CONFERENCE ON INFORMATION SYSTEMS (ACIS), MELBOURNE, AUSTRALIA, DECEMBER, PP. 1-11.

  15. PATTINSON, M. & JERRAM, C., (2013), "A STUDY OF INFORMATION SYSTEMS RISK PERCEPTIONS AT A LOCAL GOVERNMENT ORGANISATION", IN HEPU DENG & CRAIG STANDING (EDS.) PROCEEDINGS OF THE 24TH AUSTRALASIAN CONFERENCE ON INFORMATION SYSTEMS (ACIS), MELBOURNE, AUSTRALIA, DECEMBER, PP. 1-11.

  16. PARSONS, K., MCCORMAC, A., PATTINSON, M., BUTAVICIUS, M. & JERRAM, C., (2013), “PHISHING FOR THE TRUTH: A SCENARIO-BASED EXPERIMENT OF USERS’ BEHAVIOURAL RESPONSE TO EMAILS”, IN L. J. JANCZEWSKI, H. WOLF & S. SHENOI (EDS.) PROCEEDINGS OF THE 28TH IFIP TC-11 INTERNATIONAL INFORMATION SECURITY AND PRIVACY CONFERENCE (SEC2013), AUCKLAND, NZ, JULY, PP. 366-378.

  17. Pattinson, M., Jerram, C., Parsons, K., McCormac, A., & Butavicius, M., (2012), "Why Do Some People Manage Phishing E-mails Better Than Others?", Information Management & Computer Security, Emerald Group Publishing Limited, Vol: 20, Iss: 1 pp. 18-28.

  18. Pattinson, M., Jerram, C., Parsons, K., McCormac, A., & Butavicius, M., (2011), “Managing Phishing Emails: A Scenario-Based Experiment”, In S. Furnell & N. Clarke (Eds.) Proceedings of the 5th International Symposium on Human Aspects of Information Security and Assurance (HAISA 2011), London, England, July, pp. 74-85.

  19. Pattinson, M. & Jerram, C., (2010), "Examining End-user Perceptions of Information Risks: An Application of the Repertory Grid Technique", In N. Clarke, S. Furnell & R. von Solms (Eds) Proceedings of the South African Information Security Multi-Conference (SAISMC 2010), Port Elizabeth, South Africa, May, pp. 2-12.

Professional Associations Member, Information Systems Audit and Control Association (ISACA)

Board Member, ISACA Adelaide Chapter, 2015 - 2016

Member International Federation for Information Processing (IFIP), Technical Committee 11, Working Group 11.1 (Information Security Management)

Co-chair International Federation for Information Processing Systems (IFIP), Technical Committee 11, Working Group 11.12 (Human Aspects of Information Sevcurity & Assurance (HAISA))

Professional Interests

Information Security Consultant

Read about executive education

Other experts

Barbara Banda

Barbara has 16 years of experience in designing and delivering tailored executive education solutions and top team consulting support for private sector and not for profit organisations. She works closely with organisations to analyse and identify their management development needs and to devise...

Sandeep Baliga

Sandeep Baliga is the John L and Helen Kellogg Professor of Managerial Economics and Decision Sciences in the MEDS Department at the Kellogg School of Management, Northwestern University. Professor Baliga uses game theory and the theory of incentives to study fundamental issues in economics and p...

John Fleenor

Since joining the Center for Creative Leadership (CCL), John has worked as research database manager, research scientist, and group director of knowledge management. As director of psychometrics, he was responsible for leading the research and development of 360-degree feedback instruments and ot...

Looking for an expert?

Contact us and we'll find the best option for you.

Something went wrong. We're trying to fix this error.