Employees' Compliance with ISP: A Socio-Technical Conceptual Model
| dc.contributor.author | Falahati, Arman | |
| dc.contributor.author | Lapointe, Liette | |
| dc.contributor.author | Beaudry, Anne | |
| dc.date.accessioned | 2021-12-24T18:23:33Z | |
| dc.date.available | 2021-12-24T18:23:33Z | |
| dc.date.issued | 2022-01-04 | |
| dc.description.abstract | Employees’ compliance with Information Systems Security Policies (ISP) is critical for protecting organizational data. Both the technical side and the social aspects of IT-use were shown to have significant influence on ISP-compliance. However, they have been mostly studied in isolation, despite the literature’s emphasis on the socio-technical nature of security. Also, while the technical side has been extensively explored, there is a scarcity of research on the social mechanisms that underlie ISP-compliance. Here, we aim at bridging the gap between the technical and social sides of compliance. We also build upon Social Impact Theory to provide a more nuanced understanding of the social influence on ISP-compliance. We suggest that transparency of use is associated with the three pivotal elements of social influence, namely, perceived strength, immediacy, and number of influencing sources, which trigger normative and informational forces towards compliance. The influence of organizational ISP-compliance culture is also discussed. | |
| dc.format.extent | 10 pages | |
| dc.identifier.doi | 10.24251/HICSS.2022.840 | |
| dc.identifier.isbn | 978-0-9981331-5-7 | |
| dc.identifier.uri | http://hdl.handle.net/10125/80180 | |
| dc.language.iso | eng | |
| dc.relation.ispartof | Proceedings of the 55th Hawaii International Conference on System Sciences | |
| dc.rights | Attribution-NonCommercial-NoDerivatives 4.0 International | |
| dc.rights.uri | https://creativecommons.org/licenses/by-nc-nd/4.0/ | |
| dc.subject | Socio-technical Issues in Organizational Information Technologies | |
| dc.subject | human aspects of is security | |
| dc.subject | information security | |
| dc.subject | information security behaviors | |
| dc.subject | isp-compliance | |
| dc.subject | socio-technical nature of is security | |
| dc.title | Employees' Compliance with ISP: A Socio-Technical Conceptual Model | |
| dc.type.dcmi | text |
Files
Original bundle
1 - 1 of 1