Awareness Level of Information Security Managers in Small Enterprises in Poland


  • Paweł Kobis Faculty of Management, Czestochowa University of Technology
  • Grzegorz Chmielarz Faculty of Management, Czestochowa University of Technology



information security, small businesses, security management, information security awareness


The security of information assets largely depends on the real level of knowledge of those managing the information system. Particularly important is the knowledge acquired on an ongoing basis through reading and analysing: new reports published by specialised intelligence services worldwide, thematic portals, industry and scientific publications. Today's rapid pace of development of information, communication systems means that knowledge of digital information security acquired a year or more ago becomes partly outdated. Although there are specific, unchangeable canons of behaviour, proceedings in the processes of information protection - they are only a foundation for building an effective system of protecting intangible resources. Special attention should be paid to the fact that information protection is not an individual activity - it is a process running parallel to all processes operating in enterprises. The global pandemic situation has had an irreversible impact on the perception of information asset security. The situation in which most business entities were forced to work remotely necessitated a new approach to information security among its managers. The relatively stable environment of business entities until the pandemic suddenly forced the use of new techniques and technologies enabling work from private, home networks. Have such conditions changed the attitudes of security managers to the need for continuous education, to expand their knowledge in this area? Did those responsible for the security of intangible assets gain more experience with information security during the pandemic? The aim of this article is to present research on the knowledge and awareness of information security managers conducted before the pandemic in 2018 and 2019 among small businesses in Poland on the real perceptions of those responsible for information security and to compare them with the same research conducted in 2022 after the pandemic.