Abstract
It is widely agreed that information systems security police compliance plays a pivotal role in safeguarding organizational information security. This study empirically investigated organizational and individual factors in predicting employees’ ISSP compliance. With a survey data of 525 civil servants in China, results showed that organizational information security training and information security climate were significantly related to employees’ ISSP compliance. Specifically, information security climate had stronger effect on ISSP compliance than information security training. Furthermore, it was found that employees’ perceived severity, perceived vulnerability and response efficacy were positively related to employees’ ISSP compliance. We discussed the key implications of our findings for managers and researchers.
Highlights
The widespread application of computers and internets has benefited to organizational efficiency and high performance
This study confirmed that both organizational factor and individual factor could make a statistically significant contribution to the prediction of information systems security police (ISSP) compliance/ in Eastern culture
Previous ISSP compliance research mainly was conducted in Western culture context and reached different even opposite conclusion
Summary
The widespread application of computers and internets has benefited to organizational efficiency and high performance. Organizational information systems are more likely to be threatened by cyberattacks and deserved to develop security initiatives. Monitoring systems, such as data leak prevention, content monitoring technologies which offer technical solutions to the information security problems are not sufficient in providing total protection. The present research draws inconsistent conclusion on the relationship between ISSP compliance and its antecedents. In terms of individual related antecedents, Siponen et al (2014) found that employees’ perceived severity of threat was significantly accorelated with ISSP compliance[7]. This study would contribute information security research in following respects: (1) enriched ISSP compliance related research in East culture context. This study would contribute information security research in following respects: (1) enriched ISSP compliance related research in East culture context. (2) clarified the inconsistent conclusion on the relationship between ISSP compliance and its antecedents under a different culture context
Sign-in/Register to view highlights & summary Talk to us
Join us for a 30 min session where you can share your feedback and ask us any queries you have
Schedule a callDisclaimer: All third-party content on this website/platform is and will remain the property of their respective owners and is provided on "as is" basis without any warranties, express or implied. Use of third-party content does not indicate any affiliation, sponsorship with or endorsement by them. Any references to third-party content is to identify the corresponding services and shall be considered fair use under The CopyrightLaw.
