IS professionals’ information security behaviors in Chinese IT organizations for information security protection

Ma, Xiaofu

doi:10.1016/j.ipm.2021.102744

Cited by 30 publications

(17 citation statements)

References 66 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Another influential contextual risk factor that aggravates information security threats caused by insiders' errors is the flaws in detecting cyber security intrusions and suspicious internet protocol traffic into the system, which the security non-compliance behaviour can cause by information systems professionals themselves in an institution. Hence, encouraging information systems professionals and constantly training them to detect and manage cyber-security threats in their organizations, raising their awareness of the significance of their roles to their organizations will help alleviate the cyber security threats that emanate from errors committed by other groups of organizational insiders (Ma, 2022). In this regards, the cyber-security self-efficacy and job satisfaction among information security professionals are significantly related to their job roles, which are crucial to the Cyber-security in organizations organization's cyber security and hence to its readiness to safeguard against cyber-attacks (Hasan et al, 2021).…”

Section: Discussionmentioning

confidence: 99%

Human and contextual factors influencing cyber-security in organizations, and implications for higher education institutions: a systematic review

Al-Nuaimi

2022

GKMC

View full text Add to dashboard Cite

Purpose A research line has emerged that is concerned with investigating human factors in information systems and cyber-security in organizations using various behavioural and socio-cognitive theories. This study aims to explore human and contextual factors influencing cyber security behaviour in organizations while drawing implications for cyber-security in higher education institutions. Design/methodology/approach A systematic literature review has been implemented. The reviewed studies have revealed various human and contextual factors that influence cyber-security behaviour in organizations, notably higher education institutions. Research limitations/implications This review study offers practical implications for constructing and keeping a robust cyber-security organizational culture in higher education institutions for the sustainable development goals of cyber-security training and education. Originality/value The value of the current review arises in that it presents a comprehensive account of human factors affecting cyber-security in organizations, a topic that is rarely investigated in previous related literature. Furthermore, the current review sheds light on cyber-security in higher education from the weakest link perspective. Simultaneously, the study contributes to relevant literature by gaining insight into human factors and socio-technological controls related to cyber-security in higher education institutions.

show abstract

Section: Discussionmentioning

confidence: 99%

Human and contextual factors influencing cyber-security in organizations, and implications for higher education institutions: a systematic review

Al-Nuaimi

2022

GKMC

View full text Add to dashboard Cite

show abstract

“…The platform is widely used for information systems (IS) research (Wu et al. , 2020; Ma, 2022). To ensure respondents' representativeness, we targeted full-time employees working in different industries such as Internet businesses, hotels, tourism, manufacturing, and finance.…”

Section: Methodsmentioning

confidence: 99%

Why cyberloafing can be socially learned in the workplace: the role of employees' perceived certainty of formal and informal sanctions

Song

Zoghbi‐Manrique‐de‐Lara

et al. 2022

ITP

View full text Add to dashboard Cite

PurposeThis study investigated why employees' cyberloafing behavior is affected by their coworkers' cyberloafing behavior. By integrating social learning theory and deterrence theory, the authors developed a model to explain the role of employees' perceived certainty of formal and informal sanctions in understanding the effect of coworkers' cyberloafing behavior on employees' cyberloafing behavior.Design/methodology/approachThe authors conducted a survey that involved a two-stage data collection process (including 293 respondents) to test our developed model. Mplus 7.0 was used to analyze the data.FindingsThe results revealed that employees' cyberloafing was positively affected by their coworkers' cyberloafing both directly and indirectly. The indirect effect of coworkers' cyberloafing on employees' cyberloafing was mediated by the employees' perceived certainty of formal and informal sanctions on cyberloafing. Employees' perceived certainty of formal and informal sanctions were found to mediate the relationship both separately (each type of sanctions mediates the relationship individually) and in combination (the two types of sanctions form a serial mediation effect).Originality/valueThe study reveals an important mechanism – employees’ perceived certainty of formal and informal sanctions – that underlies the relationship between coworkers' cyberloafing and employees' cyberloafing, thus, contributing to the cyberloafing literature. It also demonstrates the importance of negative reinforcement (perceived sanctions) in the social learning process, which contributes to the literature on social learning theory because previous studies have primarily focused on the role of positive reinforcement. Lastly, the study reveals a positive relationship between employees' perceived certainty of formal sanctions and informal sanctions, which has important implications for deterrence theory.

show abstract

“…According to Karahoca et al (2018), the less expensive the technology is, the more people will be motivated to use it to lessen the threat. Similarly, response cost was discovered to have a detrimental impact on the intention to adopt smartwatches (Al-Emran et al, 2021), information security protection (Ma, 2022) and online security behaviors (Tsai et al, 2016) too. Because of this, we can suggest the following hypothesis:…”

Section: Hypotheses and Model Developmentmentioning

confidence: 99%

Generation Z’s adoption of IoT: protection motivation theory as the underlying model and gender as a moderator

Mahmud

Yusoff

Husin

2023

JSIT

View full text Add to dashboard Cite

Purpose The factors that motivate Generation Z individuals to use the Internet of Things for security purposes have yet to be explored. Therefore, the purpose of this paper is to close a research gap by verifying the protection motivation theory using gender as a moderator. Design/methodology/approach The authors used a purposive sampling approach to collect data from Dhaka city, in which 370 valid responses were selected. Additionally, the quantitative and cross-sectional survey used a seven-point Likert scale. Afterward, the evaluation approach included three phases: a measurement model, a structural model and multi-group analysis. Findings Vulnerability, self-efficacy and response-efficacy were discovered to be critical predictors with a variance of 60.4%. Moreover, there was a significant disparity between males and females in two relationships, response efficacy and intention as well as response cost and intention. Practical implications This research expands our understanding of Generation Z consumers' behavioral intentions to take measures against household threats, allowing preventative programs to be improved. Further, in the case of applying coping strategies, a practical difference between males and females has been found that must be bridged through awareness campaigns. Originality/value This study has made a unique contribution to the information system literature. First, the role of protection motivation theory factors in addressing security concerns in homes has been assessed. Second, the coping evaluation process has a greater impact on users' intentions than the threat appraisal process. However, males and females use slightly different approaches to defending themselves against the threat.

show abstract

IS professionals’ information security behaviors in Chinese IT organizations for information security protection

Cited by 30 publications

References 66 publications

Human and contextual factors influencing cyber-security in organizations, and implications for higher education institutions: a systematic review

Human and contextual factors influencing cyber-security in organizations, and implications for higher education institutions: a systematic review

Why cyberloafing can be socially learned in the workplace: the role of employees' perceived certainty of formal and informal sanctions

Generation Z’s adoption of IoT: protection motivation theory as the underlying model and gender as a moderator

Contact Info

Product

Resources

About