Social Groupings and Information Security Obedience Within Organizations

Abstract : Individuals’ compliance with information security policies is important for the overall security of organizations. It has been suggested that obedience cultures exist in organizations and that social processes and structures play a role for the compliance intentions and compliance behavior of individuals. This paper investigates if individuals’ compliance intention is more homogenous within social groups in the workplace than they are within the workplace overall workplace and the effect these groups have are in line with the theory of planned behavior. The results show that a considerable portion of variance in information security policy compliance intentions is explained by the respondents’ organizational department (15%), professional knowledge area (17%), and the same lunch room (18%). While sizeable and significant effects can be found on intentions the effects on attitudes, norm and perceived behavior control are less clear. The only statistically significant (p<0.05) effect is from department on attitudes and perceived norm, each with 6% explained variance. This suggests that the theory of planned behavior fails to account for factors tied to these types of social groups.
Type de document :
Communication dans un congrès
Hannes Federrath; Dieter Gollmann. 30th IFIP International Information Security Conference (SEC), May 2015, Hamburg, Germany. IFIP Advances in Information and Communication Technology, AICT-455, pp.325-338, 2015, ICT Systems Security and Privacy Protection. 〈10.1007/978-3-319-18467-8_22〉
Liste complète des métadonnées

Littérature citée [31 références]  Voir  Masquer  Télécharger

https://hal.inria.fr/hal-01345118
Contributeur : Hal Ifip <>
Soumis le : mercredi 13 juillet 2016 - 11:03:26
Dernière modification le : mercredi 13 juillet 2016 - 11:18:42

Fichier

337885_1_En_22_Chapter.pdf
Fichiers produits par l'(les) auteur(s)

Licence


Distributed under a Creative Commons Paternité 4.0 International License

Identifiants

Citation

Teodor Sommestad. Social Groupings and Information Security Obedience Within Organizations. Hannes Federrath; Dieter Gollmann. 30th IFIP International Information Security Conference (SEC), May 2015, Hamburg, Germany. IFIP Advances in Information and Communication Technology, AICT-455, pp.325-338, 2015, ICT Systems Security and Privacy Protection. 〈10.1007/978-3-319-18467-8_22〉. 〈hal-01345118〉

Partager

Métriques

Consultations de la notice

49

Téléchargements de fichiers

1