Information security and people: A conundrum for compliance

Cong, H, Dang, D, Brennan, L and Richardson, J 2017, 'Information security and people: A conundrum for compliance', Australasian Journal of Information Systems, vol. 21, pp. 1-16.

Document type: Journal Article
Collection: Journal Articles

Title Information security and people: A conundrum for compliance
Author(s) Cong, H
Dang, D
Brennan, L
Richardson, J
Year 2017
Journal name Australasian Journal of Information Systems
Volume number 21
Start page 1
End page 16
Total pages 16
Publisher Australian Computer Society
Abstract This evaluation of end-users and IT experts/managers' attitudes towards performing IT security tasks indicates important differences between their perspectives on what is and is not necessary to establish a secure corporate IT environment. Through a series of case studies, this research illustrates that making it easier for end-users to comply does not necessarily equate to enhanced implementation of security measures. End-users want to be autonomous, competent, self-motivated and active participants in the development of secure environments. However, managers and experts want to limit autonomy to ensure that procedures are followed closely, rather than permitting flexibility. This results in the creation of environments that are intrinsically de-motivating rather than motivating end-users to become self-determined and self-regulating co-creators of a secure IT environment. The paper also discusses alternative approaches to developing a human system that works for end-users and experts
Subject Business Information Systems
Marketing not elsewhere classified
Communication and Media Studies not elsewhere classified
Keyword(s) Security compliance
Security management
End user security behaviour
DOI - identifier 10.3127/ajis.v21i0.1321
Copyright notice © 2017 Pham, Pham, Brennan & Richardson. This is an open-access article distributed under the terms of the Creative Commons Attribution-NonCommercial 3.0 Australia License, which permits non-commercial use, distribution, and reproduction in any medium, provided the original author and AJIS are credited.
ISSN 1326-2238
Version Filter Type
Citation counts: TR Web of Science Citation Count  Cited 2 times in Thomson Reuters Web of Science Article | Citations
Scopus Citation Count Cited 0 times in Scopus Article
Altmetric details:
Access Statistics: 121 Abstract Views  -  Detailed Statistics
Created: Thu, 02 Feb 2017, 07:54:00 EST by Catalyst Administrator
© 2014 RMIT Research Repository • Powered by Fez SoftwareContact us