Factors in Information Assurance Professionals' Intentions to Adhere to Information Security Policies

Muller, S. Raschid; Lind, Mary R.

doi:10.4018/ijsssp.2020010102

Cited by 14 publications

(12 citation statements)

References 44 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Performance expectancy refers to the belief that the use of technology in certain situations can be beneficial as it improves performance (Venkatesh et al 2012). Studies with UTAUT as the theoretical framework have always shown that there is a statistically significant relationship between expected performance and user acceptance of the technology's behavioral intent (Engotoit, Kituyi, and Moya 2016;S. Raschid Muller and Mary L. Lind 2020).…”

Section: Performance Expectancymentioning

confidence: 99%

“…Due to the limitations and bias in the previous studies related to technology adoption and security compliance, the results are very weak and difficult to digest. For example, the (Muller & Lind, 2020) suggested that UTAUT2 may not be a good model for examining ISP compliance amongst security professionals. This may not be the case with general public and all employees of the organizations because information assurance professionals usually have more knowledge and bias towards compliance.…”

Section: Proposed Modelmentioning

confidence: 99%

“…Most of the previous studies are biased towards a specific group of people and not applicable to general users or employees. For example, the detailed study conducted by (Almaiah, Alamri, and Al-Rahmi 2019;Cuganesan, Steele, and Hart 2018;D'Arcy and Greene 2014;Hu et al 2012;Liu, Wang, and Liang 2020;S. Raschid Muller and Mary L. Lind 2020;Simonova 2020) are biased in several ways.…”

Section: Introductionmentioning

confidence: 99%

See 2 more Smart Citations

Examining the Impact of Technical Controls, Accountability and Monitoring towards Cyber Security Compliance in E-government Organisations

Alqahtani¹,

Braun²

2021

Preprint

View full text Add to dashboard Cite

IT infrastructure and systems are made up of technical as well as social systems that work in alliance to ensure that organization's goals and objectives are met. Security controls and measures are developed and used to guard data and information systems of the organization. The breaches of Cyber security are primarily caused by the misuse of information systems and failure to comply with cyber security measures. Cyber security non-compliance is a major concern for organizations. For effective compliance and human acceptance of cyber security technology and complying with cyber practices, it is essential to ascertain, research, and examine the factors which contribute to the compliance and implementation of cyber security. This study has utilized an enhanced UTAUT2 i.e. Unified Theory of Acceptance and Use of Technology 2 model and assessed its relationship with cyber security compliance. Five new formal and informal factors that affect cyber security compliance in organizations are identified and evaluated. The research questions addressed are: how the formal factors of technical measures; accountability; monitoring and evaluation impact employee's behaviour towards cyber security compliance. The study comprises a correlational survey of employees working at e-government organizations in Saudi Arabia. Results indicate that there is a significant role play by technical measures; accountability; monitoring and evaluation, on employee attitudes and behaviour towards cyber security compliance.

show abstract

Section: Performance Expectancymentioning

confidence: 99%

Section: Proposed Modelmentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

Examining the Impact of Technical Controls, Accountability and Monitoring towards Cyber Security Compliance in E-government Organisations

Alqahtani¹,

Braun²

2021

Preprint

View full text Add to dashboard Cite

show abstract

“…Thus, the use of the UTAUT2 in the present study addressed a gap in the research literature and contributed to knowledge about end-users' behavioral intentions to comply with ISPs [31].…”

Section: Utaut2 and Behaviormentioning

confidence: 94%

A Perspective on the Intersection of Information Security Policies and IA Awareness, Factoring in End-User Behavior

Muller¹

2020

Annals of Computer Science and Information Systems

Self Cite

View full text Add to dashboard Cite

In 2017 Executive Order 13800 was enacted for all federal entities to use the NIST Cybersecurity Framework to report on FISMA compliance. According to GAO-19-545 report sixteen agencies were identified as failing to successfully implement FISMA regulations rooted in information security policies (ISPs). This paper will introduce the link between information assurance awareness with the prescribed actions and its direct influence on information security policies. While organizations are conscious of the federal rules and regulations, most continue to fail to successfully implement and comply with the guidelines due to a sincere lack of information assurance and awareness, which ties directly into human behavior. A discussion on the intersection of information security awareness and behavior will be presented. The UTAUT theory measures and informs the researcher on factors that influence the end-user. Conclusively, recommendations will be offered on why organizations need to invest in a mechanism that measures these factors, which increases information awareness to change behavior, thus achieving better compliance with their organizational ISPs.

show abstract

“…A statistical survey is one of the earliest technologies used in intrusion detection technology, and many commercial versions of intrusion detection products still use this technology [19].…”

Section: Information Security Assurance Algorithms and Privacy Protec...mentioning

confidence: 99%

Privacy Law Protection Based on the Information Security Assurance Algorithm

Wang

Yue

2022

Computational Intelligence and Neuroscience

View full text Add to dashboard Cite

With the continuous development of network technology, the production and lifestyle of human beings are also quietly changing. People find that the network makes life faster and more convenient and also makes our life more “transparent.” The openness, sharing, and convenience of the network make it easier to infringe on the privacy rights of others, bringing an unprecedented impact on traditional privacy protection. This paper studied information security assurance-related algorithms and built an information security assurance model. Through this model, some privacy violation events existing in the network today were analyzed. Then, a corresponding questionnaire was constructed according to some of the problems of these events. The questionnaire is mainly used for research on people of all age groups, mainly to study their understanding of relevant legal knowledge and their views on the law. A total of 188 valid questionnaires were collected in this survey. Only 37.23% people knew a lot about the law. Most of them learned it from the Internet, and they rarely learned about it from relevant books. About 70% people believe that the law plays a big role in privacy protection, and they will choose legal help if they encounter privacy violations. However, this is inconsistent with some data obtained from the information security assurance model. Through analysis, it can be seen that although they want legal help, they lack the relevant knowledge of the law, and they do not know whether the privacy of individuals has been violated. Therefore, it is necessary to strengthen personal knowledge of privacy protection laws and improve the personal information legal protection and fair use system.

show abstract

Factors in Information Assurance Professionals' Intentions to Adhere to Information Security Policies

Cited by 14 publications

References 44 publications

Examining the Impact of Technical Controls, Accountability and Monitoring towards Cyber Security Compliance in E-government Organisations

Examining the Impact of Technical Controls, Accountability and Monitoring towards Cyber Security Compliance in E-government Organisations

A Perspective on the Intersection of Information Security Policies and IA Awareness, Factoring in End-User Behavior

Privacy Law Protection Based on the Information Security Assurance Algorithm

Contact Info

Product

Resources

About