Cognitive‐affective drivers of employees' daily compliance with information security policies: A multilevel, longitudinal study

D’Arcy, John; Lowry, Paul Benjamin

doi:10.1111/isj.12173

Cited by 131 publications

(64 citation statements)

References 103 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Our results align with this view as the effect size for detection certainty was .10 larger than that of punishment expectancy (see Table 3) and exhibited stronger relative importance (Table 7). (b) A small number of studies combined the measurement items for punishment certainty and punishment severity into a single construct D'Arcy and Lowry 2019;Hovav and Putri 2016). In these cases, we did not code the variable into either the punishment certainty of punishment severity category; it was ungrouped for our analysis.…”

Section: Category Definitionmentioning

confidence: 99%

Seeing the Forest and the Trees: A Meta-Analysis of the Antecedents to Information Security Policy Compliance

Cram¹,

D’Arcy²,

Proudfoot³

2019

MISQ

Self Cite

207

107

View full text Add to dashboard Cite

Journal 557 Technology acceptance model, protection motivation theory Attitude Normative beliefs Perceived ease of use Perceived usefulness Resource vulnerability Threat severity Goo et al. (2014) IEEE Transactions on Professional Communication Journal 581 Safety climate and performance model Normative beliefs Organizational support SETA Guo and Yuan (2012) (e) Information & Management Journal 306 Deterrence theory, theory of reasoned action, social cognitive theory Attitude Guo et al. (2011) (e)

show abstract

Section: Category Definitionmentioning

confidence: 99%

Seeing the Forest and the Trees: A Meta-Analysis of the Antecedents to Information Security Policy Compliance

Cram¹,

D’Arcy²,

Proudfoot³

2019

MISQ

Self Cite

207

107

View full text Add to dashboard Cite

show abstract

“…In our research model, the behavioural intention outcome measure is actual, self‐reported security participation behaviour as opposed to security participation intention. According to D'Arcy and Lowry (), and based on the fact that security participation behaviour is self‐reported, it is similar to an intention measure and not an unbiased intention measure of actual information security participation. Hence, we view our behavioural outcome variable (security participation) as conceptually similar to the intention portion of theory of planned behaviour.…”

Section: Discussionmentioning

confidence: 99%

“…Furthermore, we argue that employees' information security behaviour is a bidimensional construct that is composed of 2 behavioural dimensions, namely, in‐role and extra‐role behaviour, which have been considered in previous studies (eg, Guo, 2013; Hsu, Shih, Hung, & Lowry, ). Although academic research should strive to investigate employees' actual behaviour, certain obstacles in real‐life organizational settings can make this undertaking impossible, thereby providing justification for assessing behavioural intentions as approximations of actual behaviour (D'Arcy & Lowry, ; Hu et al, ; Lowry et al, ; Mehri & Ahluwalia, ; Vroom & Von Solms, ). It is commonly argued that the relationship between behavioural intention and actual behaviour is grounded in the theory of planned behaviour by Ajzen () (eg, Anderson & Agarwal, ; Siponen & Vance, ) and several researchers demonstrated a strong correspondence between the 2 constructs (D'Arcy & Lowry, ; Herath et al, ; Li, Sarathy, Zhang, & Luo, ; Webb & Sheeran, ).…”

Section: Hypothesis Generation and Research Modelmentioning

confidence: 99%

“…It is commonly argued that the relationship between behavioural intention and actual behaviour is grounded in the theory of planned behaviour by Ajzen () (eg, Anderson & Agarwal, ; Siponen & Vance, ) and several researchers demonstrated a strong correspondence between the 2 constructs (D'Arcy & Lowry, ; Herath et al, ; Li, Sarathy, Zhang, & Luo, ; Webb & Sheeran, ). This is especially true when there is a short time gap between the stated intention and actually performing behaviour (Ajzen, , ; D'Arcy & Lowry, ). The reviewed information security literature provides evidence that intention is a behavioural action tendency.…”

Section: Hypothesis Generation and Research Modelmentioning

confidence: 99%

See 1 more Smart Citation

The impact of leadership on employees' intended information security behaviour: An examination of the full‐range leadership theory

Guhr

Lebek²,

Breitner

2018

Information Systems Journal

View full text Add to dashboard Cite

show abstract

“…[7] with a research agenda for the information systems (IS) domain) and continue to be of focal interest today (e.g. [8,9]). Initially, while decision-making aspects and cognitive facets were in the main focus of research, like the design of decision rooms (e.g.…”

Section: Introductionmentioning

confidence: 99%

The Relationship of Collaboration Technologies and Cognition and Affect

Benke

Heinzl

Maedche

2021

Proceedings of the Annual Hawaii International Conference on System Sciences

View full text Add to dashboard Cite

Collaboration technologies (CT) are integral for today's workplaces and the use of CT impacts human brain and behavior. The consequences on cognition and affect of CT users have been empirically investigated since the 1970s. However, the research landscape is scattered and a comprehensive overview is missing. Consequently, we systematically analyze research about the relationship of CT and cognitive and affective user states and processes through an advanced systematic literature review based on the conceptual foundation of the time-space matrix, the stimulus-organism-response paradigm, and the workplace outcomes framework. Our results show an increase in remote CT, alongside a focus on individual analysis and affective constructs, while group level studies concentrate relatively stronger on collocated scenarios. We contribute with avenues for future research like the underrepresentation of group level analysis, a need for unified conceptualization and understanding of cognitive and affective constructs in theory and for deriving design knowledge to create advanced, cognition-and affect-sensitive CT features.

show abstract

Cognitive‐affective drivers of employees' daily compliance with information security policies: A multilevel, longitudinal study

Cited by 131 publications

References 103 publications

Seeing the Forest and the Trees: A Meta-Analysis of the Antecedents to Information Security Policy Compliance

Seeing the Forest and the Trees: A Meta-Analysis of the Antecedents to Information Security Policy Compliance

The impact of leadership on employees' intended information security behaviour: An examination of the full‐range leadership theory

The Relationship of Collaboration Technologies and Cognition and Affect

Contact Info

Product

Resources

About