Information Security Culture Concept towards Information Security Compliance: A Comparison between IT and Non-IT Professionals
نویسندگان
چکیده
This paper examines the factors determining a positive Information Security Culture (ISC) concept and influence of ISC towards ISP compliance intention (INT) between IT non-IT professionals in Malaysian public universities. Partial least square structural equation modelling, using PLS MGA, is used to assess measurement models, compare results two groups. Results indicate all have significant contribution both groups, with out seven differences. study has revealed that although groups same factors, difference terms believe Top Management Commitment Knowledge are required for implementing apositive ISC. In addition, there these intention. less INT Non-IT compared within These empirical findings would benefit formulating better security strategies by providing appropriate efforts different employees organizations. also provides total cyber solution improving information culture employees’ Policy.
منابع مشابه
Factors influencing Non-Compliance behavior towards Information Security Policies
IT organizations and CEO‟s are, and should be, concerned these days about the (lack of) data confidentiality and the usage of „shadow‟ IT systems by employees. Not only does the company risk monetary loss or public embarrassment, the senior management might also risk personal fines or even imprisonment. Several trends reinforce the attention for these subjects, including the fact that an increa...
متن کاملInternalization of Information Security Policy and Information Security Practice: A Comparison with Compliance
Most recent information security incidents have been caused by employees’ poor managements rather than technology defects. Accordingly, organizations try to improve their information security by demanding that employees conform to information security policies. Previous studies examined the effect of organization’s enforcement-based systems, using penalties and rewards, on employees’ comply wit...
متن کاملUnderstanding Transition towards Information Security Culture Change
Transitioning towards an information security culture for organisations has not been adequately explored in the current security and management literature. Many authors have proposed how information security culture can be created, fostered and managed within organisations, but have failed to adequately address the transition process towards information security culture change, particularly for...
متن کاملInformation security culture: A Behaviour Compliance Conceptual Framework
Understanding the complex dynamic and uncertain characteristics of organisational employees who perform authorised or unauthorised information security activities is deemed to be a very important and challenging task. This paper presents a conceptual framework for classifying and organising the characteristics of organisational subjects involved in these information security practices. Our fram...
متن کاملInformation Security Policy Compliance: The Role of Information Security Awareness
Compliance and systems misuse has been the focus of researchers in the last couple of years. However, given that voids in this area is still significant and systems abuse is a pressing issue likely to persist in the future, more investigation is needed in this area. Toward this end, we conducted a research study to help understand factors motivating compliance behavior intentions. Drawing on Th...
متن کاملذخیره در منابع من
با ذخیره ی این منبع در منابع من، دسترسی به آن را برای استفاده های بعدی آسان تر کنید
ژورنال
عنوان ژورنال: International Journal of Integrated Engineering
سال: 2022
ISSN: ['2229-838X', '2600-7916']
DOI: https://doi.org/10.30880/ijie.2022.14.03.017