Rachel Anne Sitarz

CERIAS TR 2026-01

phdthesis

Research on cyber intrusion mainly focuses on technical systems, operational security, and specific vulnerabilities, often overlooking individual differences in attackers' decision-making. This mixed-methods study explored how Dark Triad and Big Five personality traits influence cyber intrusion behaviors in a simulated tabletop exercise. The aim was to understand how personality impacts both the choice and execution of intrusion strategies. Of the 257 participants who completed the personality assessments, 196 provided complete responses to the intrusion scenario aligned with the MITRE ATT&CK Framework. The quantitative analyses included correlation tests, binary logistic regression, moderation analyses, and Random Forest validation to evaluate predictive consistency. Open-ended responses were analyzed qualitatively and thematically coded for specific behaviors such as reconnaissance, deception, persistence, creativity, and aggression. Results indicated that Dark Triad traits are connected to risk-intrusion behaviors. Psychopathy predicted persistence, boldness, and high-risk tactics; Machiavellianism was linked to deception and manipulation. Narcissism had a limited but significant effect. The Big Five traits mainly influenced cognitive and procedural styles: Conscientiousness for structured behaviors, Openness for creativity, and Extraversion for assertiveness. Age and cybersecurity involvement modify these relationships, highlighting developmental and experiential factors. Qualitative findings reinforced the quantitative results, showing intrusion decision-making as dynamic and multi-phased rather than linear. The findings support a person-situation interaction framework, highlighting that cyber intrusion decision-making involves personality traits, context, and technical expertise. Although exploratory, this study underscores the importance of human factors in cybersecurity research and practice.

PDF

2026-03-18

A hard-copy of this is in the Papers Cabinet