Logo do repositório
 
Publicação

Examining information systems security behavior of employees

2021Documento de conferência Acesso aberto
Ver registo simples
dc.contributor.authorKaur, Joti
dc.contributor.authorDhillon, Dhillon
dc.contributor.authorPicoto, Winnie
dc.date.accessioned2024-12-03T18:38:51Z
dc.date.available2024-12-03T18:38:51Z
dc.date.issued2021
dc.description.abstractMajority of organizations are continuously under threat because of employees’ mishandling of sensitive information. While information systems (IS) security is an integral part of employee responsibility, failure to follow security procedures and other employee psychological capabilities results in sub-par security behaviors. There are also numerous instances where regular employees have inadvertently and without malicious intent caused a data breach or a security incident (for example, the Federal Deposit Insurance Corp. data breach in March 2016, Home Depot data breach in October 2020). Therefore, it is crucial to examine the factors that can enhance the IS security behavior of employees. Researchers in IS have extensively studied IS security intention of employees, but the behavioral aspect of employees has not received much attention. Both theoretical and empirical studies in the past have focused on technical, individual, and social factors that could provide additional information on how to improve intentions to keep sensitive information secure. Studies have also explored practices that keep employees away from risky security behaviors by better user awareness and training (e.g., see Siponen et al. 2014). However, scholars in IS are beginning to recognize that although organizational IS security is increasingly dependent on the employees, we need deeper understanding on the factors that influence the behavior of employees towards IS security. In this research, we develop and empirically test a theory-based model that examines the IS security behaviors using the conceptualization of IS security performance and IS security competence. We argue that employees’ IS security behavioral outcomes are a function of their thriving in their work environment. Thriving is an important domain of inquiry as it is the subjective experience that allows employees to develop in a positive manner. We also examine how work context (keeping sensitive information secure) is facilitated by agentic work behaviors. Using a mixed-methods design, we develop our theory-based model followed by a quantitative survey-based study to validate our model. This research provides deeper theoretical understanding for information systems security behavioral outcomes. We theoretically combine the knowledge based on two prominent organizational studies aspects – namely thriving at work and agentic work behaviors – and examine them in the context of IS security. At a practical level, this research would help managerial functions formulate better organizational security policies that would result in improved IS security behaviors among employees.pt_PT
dc.description.versioninfo:eu-repo/semantics/publishedVersionpt_PT
dc.identifier.citationKaur, Joti; Gurpreet Dhillon; and Winnie Picoto. (2021). "Examining information systems security behavior of employees". ICIS 2021 TREOs. 60. https://aisel.aisnet.org/treos_icis2021/60pt_PT
dc.identifier.urihttp://hdl.handle.net/10400.5/95913
dc.language.isoengpt_PT
dc.publisherICISpt_PT
dc.subjectTechnologypt_PT
dc.subjectResearchpt_PT
dc.subjectEducationpt_PT
dc.subjectOpinionpt_PT
dc.titleExamining information systems security behavior of employeespt_PT
dc.typeconference object
dspace.entity.typePublication
rcaap.rightsopenAccesspt_PT
rcaap.typeconferenceObjectpt_PT

Ficheiros

Principais
A mostrar 1 - 1 de 1
Miniatura
Nome:
Examining information systems security behavior of employees.pdf
Tamanho:
184.07 KB
Formato:
Adobe Portable Document Format
Ver/Abrir
Licença
A mostrar 1 - 1 de 1
Miniatura indisponível
Nome:
license.txt
Tamanho:
1.2 KB
Formato:
Item-specific license agreed upon to submission
Descrição:
Ver/Abrir

Coleções

ADVANCE/ CSG - Comunicações am Actas de Conferência / Conference Documents