Assessing Sunk Cost Effect on Employees' Intentions to Violate Information Security Policies in Organizations

Kajtazi, Miranda; Bulğurcu, Burcu; Cavusoglu, Hasan; Benbasat, Izak

doi:10.1109/hicss.2014.393

Cited by 9 publications

(17 citation statements)

References 25 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…The results of the study also show that perceptions of employee sunk costs predicted by the effects of settlement and physical mismatches [39]. The same thing was explained by Han that fulfilling psychological contracts could reduce the adverse impact of costs on ISP compliance intentions in the supervisor group [2].…”

Section: Conceptual Frameworkmentioning

confidence: 52%

See 1 more Smart Citation

A Model of Information Security Policy Compliance for Public Universities: A Conceptual Model

Angraini

Alias

Okfalisa

2019

Advances in Intelligent Systems and Computing

View full text Add to dashboard Cite

The university is an organization that manages much public information, and therefore, information security policies are developed to ensure data security. However, during implementation still founded disobey behavior user and has an impact on data security. The previous research has been conducted to find influencing factor user comply with information security, although some model and theories still limited to implementation. There is a lack of researchers combine behavioral theory and organizational theory to develop models and previous model inadequate to universities that have unique characteristics. This study aims to explore and identify factors that influence information security compliance and continue to develop conceptual models for assessing information security policies. This conceptual model creates based on a systematic literature review and preliminary study. The results in the conceptual model found several variables, namely habits, attitudes, moral beliefs, self-efficacy from behavioral theories and human culture, commitment, rewards, costs can be used to evaluate user compliance with information security policies. Conceptual will be tested further to contribute to help universities to ensure and assess users to comply with information security policies.

show abstract

Section: Conceptual Frameworkmentioning

confidence: 52%

“…The organization will incur higher costs when an incident occurs due to noncompliance of its employees. Kajtazi [39] examines cost factors as a mediating mechanism to explain intentional violations by people in information security policies.…”

Section: Conceptual Frameworkmentioning

confidence: 99%

A Model of Information Security Policy Compliance for Public Universities: A Conceptual Model

Angraini

Alias

Okfalisa

2019

Advances in Intelligent Systems and Computing

View full text Add to dashboard Cite

show abstract

“…There are few studies involving insider threat behavior (M. Maasberg, Warren, & Beebe, 2015). The psychological profiling of hackers has attracted substantial recent research interest, but the empirical results are limited (Crossler et al, 2013;Dhillon, Samonas, & Etudo, 2016;Kajtazi, Bulgurcu, Cavusoglu, & Benbasat, 2014;Roy Sarkar, 2010;Safa, Maple, Watson, & Von Solms, 2018;Warkentin, Vance, & Johnston, 2016). There are two reasons for the limited empirical research on insider threats.…”

Section: Prior Researchmentioning

confidence: 99%

Dark Traits and Hacking Potential

2021

JOP

View full text Add to dashboard Cite

This paper investigates the psychological traits of individuals' attraction to engaging in hacking behaviors (both ethical and illegal/unethical) upon entering the workforce. A new set of scales have been developed to assist in the delineation of the three hat categories. We have also developed a scale to measure each subject's perception of the probability of being apprehended for violating privacy laws. The results suggest that white hat, grey hat, and black hat hackers score high on the Machiavellian and psychopathy scales. We also found evidence that grey hatters oppose authority, black hatters score high in the thrill-seeking dimension, and white hatters, the good guys, tend to be narcissists. Thrill-seeking was moderately important for white hat and black hat hacking, and opposition to authority was significant for grey hat hacking. Narcissism was not statistically significant in any of the models. A perceived probability of being apprehended had a negative effect on both grey hat and black hat hacking. Additional models were explored to examine the relationships among the research variables.

show abstract

“…Psychological profiling hackers has attracted substantial recent research interest [5,[9][10][11][12][13]. Motivations for participating in hacking behavior include seeking revenge, ideology, fun, thrills, survival, notoriety, recreation, and profit [5,14,15].…”

Section: Prior Research On Hacking Motivationmentioning

confidence: 99%

Psychological Profiling of Hacking Potential

Gaia¹,

Ramamurthy²,

Sanders³

et al. 2020

Proceedings of the Annual Hawaii International Conference on System Sciences

View full text Add to dashboard Cite

This paper investigates the psychological traits of individuals' attraction to engaging in hacking behaviors (both ethical and illegal/unethical) upon entering the workforce. We examine the role of the Dark Triad, Opposition to Authority and Thrill-Seeking traits as regards the propensity of an individual to be interested in White Hat, Black Hat, and Grey Hat hacking. A new set of scales were developed to assist in the delineation of the three hat categories. We also developed a scale to measure each subject's perception of the probability of being apprehended for violating privacy laws. Engaging in criminal activity involves a choice where there are consequences and opportunities, and individuals perceive them differently, but they can be deterred if there is a likelihood of punishment, and the punishment is severe. The results suggest that individuals that are White Hat, Grey Hat and Black Hat hackers score high on the Machiavellian and Psychopathy scales. We also found evidence that Grey Hatters oppose authority, Black Hatters score high on the thrill-seeking dimension and White Hatters, the good guys, tend to be Narcissists. Thrill-seeking was moderately important for White Hat hacking and Black hat hacking. Opposition to Authority was important for Grey Hat hacking. Narcissism was not statistically significant in any of the models. The probability of being apprehended had a negative effect on Grey Hat and Black Hat hacking.

show abstract

Assessing Sunk Cost Effect on Employees' Intentions to Violate Information Security Policies in Organizations

Cited by 9 publications

References 25 publications

A Model of Information Security Policy Compliance for Public Universities: A Conceptual Model

A Model of Information Security Policy Compliance for Public Universities: A Conceptual Model

Dark Traits and Hacking Potential

Psychological Profiling of Hacking Potential

Contact Info

Product

Resources

About