Impact of employees' demographic characteristics on the awareness and compliance of information security policy in organizations

被引:25
作者
Chua, Hui Na [1 ]
Wong, Siew Fan [1 ]
Low, Yeh Ching [1 ]
Chang, Younghoon [2 ]
机构
[1] Sunway Univ, Dept Comp & Informat Syst, Subang Jaya, Selangor, Malaysia
[2] Beijing Inst Technol, Sch Management & Econ, Beijing, Peoples R China
来源
TELEMATICS AND INFORMATICS | 2018年 / 35卷 / 06期
关键词
Personal data protection; Policy awareness; Policy compliance; Demographic characteristics; Information privacy and security; PROTECTION MOTIVATION; PRIVACY CONCERNS; CONSUMER PRIVACY; USER AWARENESS; BEHAVIOR; PERCEPTIONS; DETERRENCE; INTERNET; INSIGHTS; GENDER;
D O I
10.1016/j.tele.2018.05.005
中图分类号
G25 [图书馆学、图书馆事业]; G35 [情报学、情报工作];
学科分类号
1205 ; 120501 ;
摘要
To protect consumer information, many countries have begun enforcing the Personal Data Protection Act. Organizations are required to comply with this Act, failure of which may result in hefty penalties. To ensure compliance, some organizations have introduced their own information security policy to protect consumer information. A review of the literature shows that many employees are either unaware of the policy or tend to ignore it, which increases the risk of noncompliance. To help organizations manage compliance among their employees, in this study, we used demographic factors to develop profiles of employees' policy awareness and their intention to comply. By having an understanding of employee profiles, effective and targeted strategies can be devised to educate employees accordingly. Our data from 607 respondents show that age, working industry and education levels have significant effects on information security policy awareness and compliance.
引用
收藏
页码:1770 / 1780
页数:11
相关论文
共 50 条
[41]   Predictors of Success in Information Security Policy Compliance [J].
Nord, Jeretta ;
Sargent, Carol Springer ;
Koohang, Alex ;
Marotta, Angelica .
JOURNAL OF COMPUTER INFORMATION SYSTEMS, 2022, 62 (04) :863-873
[42]   The role of norms in information security policy compliance [J].
Wiafe, Isaac ;
Koranteng, Felix Nti ;
Wiafe, Abigail ;
Obeng, Emmanuel Nyarko ;
Yaokumah, Winfred .
INFORMATION AND COMPUTER SECURITY, 2020, 28 (05) :743-761
[43]   Psychological Capital and Information Security Policy Compliance [J].
Zhao, Jiaqing ;
Hong, Yuxiang ;
Chen, Wenqing ;
Chen, Chouyong .
JOURNAL OF COMPUTER INFORMATION SYSTEMS, 2024,
[44]   Informal control responses to information security policy violations: A factorial survey on insurance employees' moral licensing of insider threats [J].
Haag, Steffi ;
Siegfried, Nils ;
Winkler, Nane .
COMPUTERS & SECURITY, 2025, 157
[45]   Information Security Culture Dimensions in Information Security Policy Compliance Study: A Review [J].
Nasir, Akhyari ;
Arshah, Ruzaini Abdullah .
ADVANCED SCIENCE LETTERS, 2018, 24 (02) :943-946
[46]   Believe It or Not: Employees Intend to Comply With Information Security Policy Because of the Desire for Trade-Offs [J].
Shih, Hung-Pin ;
Lai, Kee-hung ;
Guo, Xitong ;
Cheng, T. C. E. .
JOURNAL OF GLOBAL INFORMATION MANAGEMENT, 2021, 29 (06)
[47]   Nurse Information Security Policy Compliance, Information Competence, and Information Security Attitudes Predict Information Security Behavior [J].
Kang, Purum ;
Kang, Jiwon ;
Monsen, Karen A. .
CIN-COMPUTERS INFORMATICS NURSING, 2023, 41 (08) :595-602
[48]   Control-Related Motivations and Information Security Policy Compliance: The Effect of Reflective and Reactive Autonomy Research-in-Progress [J].
Wall, Jeffrey D. ;
Palvia, Prashant .
AMCIS 2013 PROCEEDINGS, 2013,
[49]   Examining technostress creators and role stress as potential threats to employees' information security compliance [J].
Hwang, Inho ;
Cha, Oona .
COMPUTERS IN HUMAN BEHAVIOR, 2018, 81 :282-293
[50]   A Review of the Theory of Planned Behaviour in the Context of Information Security Policy Compliance [J].
Sommestad, Teodor ;
Hallberg, Jonas .
SECURITY AND PRIVACY PROTECTION IN INFORMATION PROCESSING SYSTEMS, 2013, 405 :257-271
12345