An integrative model of computer abuse based on social control and general deterrence theories
Information and Management
Information Systems Research
Information security management standards: Problems and solutions
Information and Management
Estimating the market impact of security breach announcements on firm values
Information and Management
An integrative study of information systems security effectiveness
International Journal of Information Management: The Journal for Information Professionals
Motivating IS security compliance: Insights from Habit and Protection Motivation Theory
Information and Management
The effects of multilevel sanctions on information security violations: A mediating model
Information and Management
Employees' adherence to information security policies: An exploratory field study
Information and Management
| Hi-index | 0.00 |
Given the significant role of people in the management of security, attention has recently been paid to the issue of how to motivate employees to improve security performance of organizations. However, past work has been dependent on deterrence theory rooted in an extrinsic motivation model to help understand why employees do or do not follow security rules in their organization. We postulated that we could better explain employees' security-related rule-following behavior with an approach rooted in an intrinsic motivation model. We therefore developed a model of employees' motivation to comply with IS security policies which incorporated both extrinsic and intrinsic models of human behavior. It was tested with data collected through a survey of 602 employees in the United States. We found that variables rooted in the intrinsic motivation model contributed significantly more to the explained variance of employees' compliance than did those rooted in the extrinsic motivation model.