What levels of moral reasoning and values explain adherence to information security rules? An empirical study

Myyry, Liisa; Siponen, Mikko T.; Pahnila, Seppo; Vartiainen, Tero; Vance, Anthony

doi:10.1057/ejis.2009.10

Cited by 208 publications

(130 citation statements)

References 48 publications

Supporting

Mentioning

128

Contrasting

Order By: Relevance

“…The existing studies in the IS security area that look into the behavioral aspects of the insiders have provided insights into the effects of insiders" dysfunctional behaviors on organizational IS assets. These can be seen in valuable work on IS security compliance/non-compliance behaviors [10][11][12][13][14][15][16][17][18][19][20] including motivations to comply with IS security policies [21][22][23][24], IS misuse [2,[25][26][27][28][29][30][31], and studies on computer abuse [32][33][34]. These IS security studies, however, have largely focused on nonmalicious and policy non-compliance behaviors [4,7].…”

Section: Introductionmentioning

confidence: 99%

Dysfunctional information system behaviors are not all created the same: Challenges to the generalizability of security-based research

Djajadikerta

Roni

Trireksani

2015

Information & Management

View full text Add to dashboard Cite

Please cite this article as: H.G. Djajadikerta, S. Mat Roni, T. Trireksani, Dysfunctional information system behaviors are not all created the same: Challenges to the generalizability of security-based research, Information and Management (2015), http://dx.doi.org/10.1016/j.im. 2015.07.008 This is a PDF file of an unedited manuscript that has been accepted for publication. As a service to our customers we are providing this early version of the manuscript. The manuscript will undergo copyediting, typesetting, and review of the resulting proof before it is published in its final form. Please note that during the production process errors may be discovered which could affect the content, and all legal disclaimers that apply to the journal pertain.

show abstract

Section: Introductionmentioning

confidence: 99%

Dysfunctional information system behaviors are not all created the same: Challenges to the generalizability of security-based research

Djajadikerta

Roni

Trireksani

2015

Information & Management

View full text Add to dashboard Cite

show abstract

“…And current methods are grossly insufficient to mitigate the risks of technology that is smarter than humans. For example, with today's technology, estimates suggest that organizations confront at least one serious information security incident per year, and these are often caused indirectly by employees who violate or neglect these policies [21]. Consequently, organization-level risks are threatened by individual employees who make mistakes, breach policy, or make bad decisions.…”

Section: Macro: Organizational Risksmentioning

confidence: 99%

Avoiding AI Armageddon with metrologically-oriented psychometrics

Barney¹,

Fisher²

2017

18th International Congress of Metrology

View full text Add to dashboard Cite

Abstract. With the rapid advancement of powerful artificial intelligence, visionaries such as Stephen Hawking warn that we could be architecting our own extinction. Visionary efforts such as the OpenAI project, and the Ethics and Governance of Artificial Intelligence Fund are key lifeboats to proactively engineer ethics into our technological children, and create other safety strategies to mitigate the likelihood of dangerous AI. Engineering a science of safe AI requires, as a foundational element, an approach to measurement that allows subsequent risk analysis and mitigation methods to be evaluated with meaningful, linear, accurate and precise methods that span a variety of disciplines that contribute to risk variance in organizational, process and team outcomes.

show abstract

“…The perception of 'mandatoriness' was found to be very effective in motivating individuals to adhere to security guidelines. Similarly, theories of cognitive moral development and motivational types have been used by Myyry et al (2009) to explain the behavior of employees towards adherence to information systems security policies and have empirically verified their theoretical model. They found that in real-life situations, pre-conventional reasoning (i.e.…”

Section: Theoretical Foundationsmentioning

confidence: 99%

“…They found that in real-life situations, pre-conventional reasoning (i.e. making decision based on pleasure or pain received/expected from external and physical events -Kohlberg's Level One of three levels of moral reasoning (Kohlberg 1984) cited by Myyry (2009) positively influences adherence to IS security policies. Straub (1990) looked in to the issue of investment in IS security versus its effectiveness in controlling computer abuse based on general theory of deterrence taken from criminology.…”

Section: Theoretical Foundationsmentioning

confidence: 99%

When Sentry Goes Stealing: An Information Systems Security Case Study in Behavioural Context

Nabi

Asif

Mirza

2014

AIP

View full text Add to dashboard Cite

Abstract:In this paper we describe a case where the top management of a small holding company is involved in a love-hate relationship with its own IT department. The top management firmly believes that IT staff is involved in leaking out company's secrets. However, having no expertise in IT and even lesser grasp on the complexity of IT architecture resulting from recent mergers and acquisition, the top management finds itself crucially dependent on its IT systems, yet unable to trust them fully. The theories of deterrence and reasoned action are used to explain the otherwise objectionable behaviour of the perpetrator.

show abstract

What levels of moral reasoning and values explain adherence to information security rules? An empirical study

Cited by 208 publications

References 48 publications

Dysfunctional information system behaviors are not all created the same: Challenges to the generalizability of security-based research

Dysfunctional information system behaviors are not all created the same: Challenges to the generalizability of security-based research

Avoiding AI Armageddon with metrologically-oriented psychometrics

When Sentry Goes Stealing: An Information Systems Security Case Study in Behavioural Context

Contact Info

Product

Resources

About