The assumptions and profiles behind IT security behavior

Balozian, Puzant; Leidner, Dorothy

The assumptions and profiles behind IT security behavior

Balozian, Puzant; Leidner, Dorothy

URL: https://aisel.aisnet.org/cgi/viewcontent.cgi?article=1626&context=hicss-50

Date: 2017-11-23

Terms of Use: This item is made available under the terms and conditions applicable to " Conference Paper / Proceeding ", as set forth at: http://libraries.lau.edu.lb/research/laur/terms-of-use/articles.php

Abstract:

Among the major IT security challenges facing organizations is non-malicious employee behavior that nevertheless poses significant threats to an organization’s IT security. Using a grounded theory methodology, this paper finds that organizational security behaviors are inherently related to employee assumptions regarding the importance of IT security policy compliance and regarding the reason why IT security measures are implemented. Analyzing these assumptions uncovers four profiles of perspectives concerning IT security: the IT Security Indulgence, the IT Security Overindulgence, the IT Knows Best and the IT Security Disconnect profiles. These profiles are useful in understanding employee IT security behaviors and may help IT departments in developing more effective strategies designed to ensure policy compliance

Citation:

Balozian, P., & Leidner, D. (2017, January). The Assumptions and Profiles Behind IT Security Behavior. In Proceedings of the 50th Hawaii International Conference on System Sciences.