Organizational information security policies: a review and research framework
A major stream of research within the field of information systems security examines the use
of organizational policies that specify how users of information and technology resources …
of organizational policies that specify how users of information and technology resources …
Information security awareness and behavior: a theory-based literature review
B Lebek, J Uffen, M Neumann, B Hohler… - Management …, 2014 - emerald.com
Purpose–This paper aims to provide an overview of theories used in the field of employees'
information systems (IS) security behavior over the past decade. Research gaps and …
information systems (IS) security behavior over the past decade. Research gaps and …
Toward a unified model of information security policy compliance
Information systems security (ISS) behavioral research has produced different models to
explain security policy compliance. This paper (1) reviews 11 theories that have served the …
explain security policy compliance. This paper (1) reviews 11 theories that have served the …
Information security policy compliance model in organizations
The Internet and information technology have influenced human life significantly. However,
information security is still an important concern for both users and organizations …
information security is still an important concern for both users and organizations …
Future directions for behavioral information security research
Information Security (InfoSec) research is far reaching and includes many approaches to
deal with protecting and mitigating threats to the information assets and technical resources …
deal with protecting and mitigating threats to the information assets and technical resources …
Motivating IS security compliance: Insights from habit and protection motivation theory
Employees' failure to comply with IS security procedures is a key concern for organizations
today. A number of socio-cognitive theories have been used to explain this. However, prior …
today. A number of socio-cognitive theories have been used to explain this. However, prior …
Information systems security policy compliance: An empirical study of the effects of socialisation, influence, and cognition
P Ifinedo - Information & Management, 2014 - Elsevier
This study investigated employees' information systems security policy (ISSP) compliance
behavioural intentions in organisations from the theoretical lenses of social bonding, social …
behavioural intentions in organisations from the theoretical lenses of social bonding, social …
Information security policy compliance: an empirical study of rationality-based beliefs and information security awareness
Many organizations recognize that their employees, who are often considered the weakest
link in information security, can also be great assets in the effort to reduce risk related to …
link in information security, can also be great assets in the effort to reduce risk related to …
Examining technostress creators and role stress as potential threats to employees' information security compliance
This study examined whether employees' security-related stress, ie, technostress and role
stress, in an organizational setting could affect their compliance intention regarding …
stress, in an organizational setting could affect their compliance intention regarding …
Beyond deterrence: An expanded view of employee computer abuse
R Willison, M Warkentin - MIS quarterly, 2013 - JSTOR
Recent academic investigations of computer security policy violations have largely focused
on non-malicious noncompliance due to poor training, low employee motivation, weak …
on non-malicious noncompliance due to poor training, low employee motivation, weak …