Falahati, ArmanLapointe, LietteBeaudry, Anne2021-12-242021-12-242022-01-04978-0-9981331-5-7http://hdl.handle.net/10125/80180Employees’ compliance with Information Systems Security Policies (ISP) is critical for protecting organizational data. Both the technical side and the social aspects of IT-use were shown to have significant influence on ISP-compliance. However, they have been mostly studied in isolation, despite the literature’s emphasis on the socio-technical nature of security. Also, while the technical side has been extensively explored, there is a scarcity of research on the social mechanisms that underlie ISP-compliance. Here, we aim at bridging the gap between the technical and social sides of compliance. We also build upon Social Impact Theory to provide a more nuanced understanding of the social influence on ISP-compliance. We suggest that transparency of use is associated with the three pivotal elements of social influence, namely, perceived strength, immediacy, and number of influencing sources, which trigger normative and informational forces towards compliance. The influence of organizational ISP-compliance culture is also discussed.10 pagesengAttribution-NonCommercial-NoDerivatives 4.0 InternationalSocio-technical Issues in Organizational Information Technologieshuman aspects of is securityinformation securityinformation security behaviorsisp-compliancesocio-technical nature of is securityEmployees' Compliance with ISP: A Socio-Technical Conceptual Modeltext10.24251/HICSS.2022.840