Human factor represent an essential issue in the security of information in organizations, as human factor determine the behavior of the employees toward information security. This paper attempts to integrate related human factors, recognized by previous paper, into a structured comprehensive framework. The framework has four main domains that take the form of a diamond. Two domains are concerned with the environment and management issues representing an organization dimension; while the other two are related to preparedness and responsibility issues giving an employee dimension.