Earticle

초록

영어

While organizations are making a considerable effort to leverage formal and informal control mechanisms (e.g., policies, procedures, organizational culture) to improve security, their impact and effectiveness is under scrutiny as employees seldom comply with information security procedures. Drawing upon Griffin and Neal's safety climate and performance model, we develop an information security climate model of security policy compliance. With 581 responses collected through a survey of IT users in South Korea, the results strongly support the fundamental proposition that the information security climate has significant positive influence on the intention of the security policy compliance. The study also reveals that the security climate nurtures the employee’s organizational commitment, which in turn shapes favorable attitude towards the compliance of information security and controls the perceived cost of security compliance at the same time. Overall, the findings support our view that various organizational efforts towards information security collectively create the fertile environment where an organizational member is transformed from a security threat to a security asset.

목차

Abstract
 1. Introduction
 2. Motivation and theoretical background
  2.1 Information security climate (ISC)
 3. Research model and hypotheses
  3.1. Information security climate (ISC)
  3.2. Organizational commitment (OC)
  3.3. Perceived cost of security policy compliance (PCSPC)
 4. Methods
  4.1 Data collection
  4.2. Construct operationalization
 5. Analysis and results
  5.1. Measurement properties of variables
  5.2 Assessing the second order construct
  5.3. Structural Model
 6. Discussion and Implications
 7. References

저자

• Myung-Seong Yim [ Busienss Administration, Sahmyook University ]

참고문헌