Institutional governance and protection motivation: Theoretical insights into shaping employees’ security compliance behavior in higher education institutions in the developing world

Hina, Sadaf; Selvam, Dhanapal Durai Dominic Panneer; Lowry, Paul Benjamin

doi:10.1016/j.cose.2019.101594

Cited by 68 publications

(29 citation statements)

References 47 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…This paper contributes to information security research, and can assist other researchers in future investigation. [8], [5], [56], [80], [58], [100] , [92], [68], [4], [65], [47], [21], [76], [60], [53] [3]…”

Section: Discussionmentioning

confidence: 99%

“…Researchers argue that ISP awareness is associated with positive attitudes among organizations' employees [18,25]. Hina et al [65] argue that security education, training, and awareness (SETA) programs improve the information security culture in organizations. Similarly, the information security education, training, and awareness factor was commonly analyzed in current researches.…”

Section: A Information Security Education Training Awarenessmentioning

confidence: 99%

“…Furthermore, Stafford et al [46] confirmed that an effective training program for users is more crucial than other prevention protocols in ISPC behavior. Among 301 employees working in higher education institutions in Malaysia, Hina et al [65] considered the SETA program to play a vital role in motivating employees to embrace protective behavior for compliance with ISP. The study of Burns et al [69] explores the role of employee awareness of the SETA program toward two different intentions among 411 participants.…”

Section: A Information Security Education Training Awarenessmentioning

confidence: 99%

“…The existence of ISP and its role in improving the security behavior within the organization employees [65] Negative Experience The negative incident related to information system security that remains in the employee experience when dealing with future issues.…”

Section: Provision Of Policymentioning

confidence: 99%

See 3 more Smart Citations

Exploring the Influence of Direct and Indirect Factors on Information Security Policy Compliance: A Systematic Literature Review

Alassaf

Alkhalifah²

2021

IEEE Access

View full text Add to dashboard Cite

Information systems security is considered one of the key issues concerning organizations' management. Despite the massive investment that organizations make to safeguard their systems, there are still many internal security breaches. The increase in insider threats to information systems can be related to the employees' compliance toward information security policy. Several review papers were conducted to explore information security policy compliance behavior research. However, the literature lacks insight into the positive and negative (direct or indirect) influence of human and organizational theories and their factors influencing information security policy compliance behavior. Therefore, this paper provides a systematic literature review synthesizing the psychological theories, organizational theories, and other internal and external factors on information security policy compliance researches. The results analysis of 87 studies showed that the general deterrence theory, theory of planned behavior, and protection motivation theory are the most frequently used. The influencing factors of theories are mostly similar in the results. Furthermore, information security education, training and awareness, trust, and leadership, among many other internal and external factors, are highly used. This study is one of the first researches that explores the relationship types among the influencing factors; emphasizing the direct and indirect effect, and information security policy compliance behavior. This paper also identifies some gaps in information security policy compliance behavior research and proposes future works. In addition, it provides a theoretical contribution and practical insight in the context of information security policy compliance.

show abstract

Section: Discussionmentioning

confidence: 99%

Section: A Information Security Education Training Awarenessmentioning

confidence: 99%

Section: A Information Security Education Training Awarenessmentioning

confidence: 99%

Section: Provision Of Policymentioning

confidence: 99%

See 2 more Smart Citations

Exploring the Influence of Direct and Indirect Factors on Information Security Policy Compliance: A Systematic Literature Review

Alassaf

Alkhalifah²

2021

IEEE Access

View full text Add to dashboard Cite

show abstract

“…Their findings showed that perceived vulnerability influenced the intention to use the apps. In higher education institutions, Hina et al [60] discovered that perceived severity and perceived vulnerability positively influence the intention to comply with information security policies.…”

Section: Protection Motivation Theorymentioning

confidence: 99%

Why Do People Hide Knowledge in the Online Knowledge Community? An Integrated Framework of Protection Motivation, Self-Determination, and Social Exchange Beliefs

Qin

Lee

2021

Sustainability

View full text Add to dashboard Cite

Suppressing knowledge hiding is a prerequisite for achieving positive knowledge interactions among people. Most previous studies concentrate on knowledge hiding in organizations, but the quantitative examination of knowledge hiding antecedents in the online knowledge community has been limited. This study investigates individuals’ knowledge hiding intentions in the context of the online knowledge community through an integrated framework of protection motivation theory, self-determination theory, and social exchange beliefs. We tested the research model through a valid sample of 377 respondents from Chinese online knowledge community users. The results demonstrate that individuals’ threat appraisal (perceived severity and perceived vulnerability) and intrinsic motivation (perceived autonomy and perceived relatedness) are negatively associated with interdependence. Additionally, interdependence within the online knowledge community is proved to negatively affect individuals’ knowledge hiding intention. Furthermore, reciprocity and trust moderate the relationship between interdependence and knowledge hiding intentions. This study enriches the academic literature in the knowledge hiding field, and the findings provide an in-depth understanding of knowledge hiding in the context of the online knowledge community.

show abstract

Sleeping with the Enemy: Does Depletion Cause Fatigue with Cybersecurity?

Reeves

Calic

Delfabbro

2020

HCI for Cybersecurity, Privacy and Trust

View full text Add to dashboard Cite

Institutional governance and protection motivation: Theoretical insights into shaping employees’ security compliance behavior in higher education institutions in the developing world

Cited by 68 publications

References 47 publications

Exploring the Influence of Direct and Indirect Factors on Information Security Policy Compliance: A Systematic Literature Review

Exploring the Influence of Direct and Indirect Factors on Information Security Policy Compliance: A Systematic Literature Review

Why Do People Hide Knowledge in the Online Knowledge Community? An Integrated Framework of Protection Motivation, Self-Determination, and Social Exchange Beliefs

Sleeping with the Enemy: Does Depletion Cause Fatigue with Cybersecurity?

Contact Info

Product

Resources

About