End user nonmalicious, counterproductive computer security behaviors: concept, development, and validation of an instrument

Ifinedo, Princely

doi:10.1002/spy2.66

Cited by 3 publications

(4 citation statements)

References 53 publications

(88 reference statements)

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Similarly, SETA programs' availability and their impact on reducing workers' involvement in UCP might be contextual. Thus, where an individual is located might have a bearing on his or her ability to deal with UCP and related IS security issues (e.g., Bellman et al, 2004;Ifinedo, 2019;KNOWBE4, 2019;The African Report, 2021;Ameen et al, 2021).…”

Section: Theoretical Contributionsmentioning

confidence: 99%

“…Recent research has focused attention on cyber-related end-user IS security behaviors by developing taxonomies for categorizing such behaviors (Egelman & Peer, 2015;Lee et al, 2008;Posey et al, 2013;Ifinedo, 2019;Vishwanath et al, 2020). For example, Posey et al (2013) proposed a scheme classifying IS protection-motivated behaviors, and Egelman and Peer (2015) developed a security behavior intentions scale.…”

Section: Literature Reviewmentioning

confidence: 99%

“…For example, Posey et al (2013) proposed a scheme classifying IS protection-motivated behaviors, and Egelman and Peer (2015) developed a security behavior intentions scale. Ifinedo (2019) developed a non-malicious IS security deviant behavior taxonomy, and Vishwanath et al (2020) presented a cyber hygiene inventory. It is noteworthy that these frameworks have items covering unsafe online computing and unhygienic cyber practices.…”

Section: Literature Reviewmentioning

confidence: 99%

“…The diffusion of the Internet has boosted cyber-based operations for private and public organizations across the world. Internet-adopting organizations entrust workers to use the tool to perform workrelated tasks; however, employees often deviate from organizational rules on prescribed cybersecurity practices and measures (Farshadkhah et al, 2021;Ogbanufe, 2021;Hamidi & Moradi, 2017;The ePolicy Institute, 2017;Ifinedo, 2019;Wang et al, 2020). Organizations that use the Internet for operations, including storing customer data, employee information, and financial records, as well as transmitting data and information to clients and partners, must accept that they share in its increased vulnerability because security incidents and breaches do occur (Anderson & Agarwal, 2010;CyberEdge Group Report, 2020).…”

Section: Introductionmentioning

confidence: 99%

See 3 more Smart Citations

Effects of Personal Factors and Organizational Reinforcing Tools in Decreasing Employee Engagement in Unhygienic Cyber Practices

Ifinedo

Mengesha

Bekele

2022

Journal of Global Information Management

Self Cite

View full text Add to dashboard Cite

Employee engagement in unhygienic cyber practices (UCP) is a concern for organizations across the world. The purpose of this paper is to explore the effects of personal and environmental factors in decreasing workers’ engagement in UCP in a developing country: A personal-environment-behavior model was adapted for the study. Data was collected from working MBA students in Ethiopia. The key results show that the personal factor of self-regulation related to acceptable cyber practices decreases workers’ engagement in UCP, while self-efficacy did not. The environmental factor of computer monitoring (CM) decrease workers’ engagement in UCP, while the availability of security education and training awareness (SETA) programs did not. Both CM and SETA have positive effects in improving self-efficacy. Only SETA programs positively impact self-regulation. This study adds to the understanding of end-user security behavior by focusing on UCP with insights from a developing country.

show abstract

Section: Theoretical Contributionsmentioning

confidence: 99%

Section: Literature Reviewmentioning

confidence: 99%

Section: Literature Reviewmentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

See 2 more Smart Citations

Effects of Personal Factors and Organizational Reinforcing Tools in Decreasing Employee Engagement in Unhygienic Cyber Practices

Ifinedo

Mengesha

Bekele

2022

Journal of Global Information Management

Self Cite

View full text Add to dashboard Cite

show abstract

Reducing data privacy breaches: an empirical study of relevant antecedents and an outcome

Ifinedo,

Vachon,

Ayanso

2024

ITP

View full text Add to dashboard Cite

PurposeThis paper aims to increase understanding of pertinent exogenous and endogenous antecedents that can reduce data privacy breaches.Design/methodology/approachA cross-sectional survey was used to source participants' perceptions of relevant exogenous and endogenous antecedents developed from the Antecedents-Privacy Concerns-Outcomes (APCO) model and Social Cognitive Theory. A research model was proposed and tested with empirical data collected from 213 participants based in Canada.FindingsThe exogenous factors of external privacy training and external privacy self-assessment tool significantly and positively impact the study's endogenous factors of individual privacy awareness, organizational resources allocated to privacy concerns, and group behavior concerning privacy laws. Further, the proximal determinants of data privacy breaches (dependent construct) are negatively influenced by individual privacy awareness, group behavior related to privacy laws, and organizational resources allocated to privacy concerns. The endogenous factors fully mediated the relationships between the exogenous factors and the dependent construct.Research limitations/implicationsThis study contributes to the budding data privacy breach literature by highlighting the impacts of personal and environmental factors in the discourse.Practical implicationsThe results offer management insights on mitigating data privacy breach incidents arising from employees' actions. Roles of external privacy training and privacy self-assessment tools are signified.Originality/valueAntecedents of data privacy breaches have been underexplored. This paper is among the first to elucidate the roles of select exogenous and endogenous antecedents encompassing personal and environmental imperatives on data privacy breaches.

show abstract

A Comparative Assessment of Human Factors in Cybersecurity: Implications for Cyber Governance

et al. 2023

View full text Add to dashboard Cite

End user nonmalicious, counterproductive computer security behaviors: concept, development, and validation of an instrument

Cited by 3 publications

References 53 publications

Effects of Personal Factors and Organizational Reinforcing Tools in Decreasing Employee Engagement in Unhygienic Cyber Practices

Effects of Personal Factors and Organizational Reinforcing Tools in Decreasing Employee Engagement in Unhygienic Cyber Practices

Reducing data privacy breaches: an empirical study of relevant antecedents and an outcome

A Comparative Assessment of Human Factors in Cybersecurity: Implications for Cyber Governance

Contact Info

Product

Resources

About