Investigating the impact of institutional pressures on information security compliance in organizations

Al-Kalbani, A, Deng, H, Kam, B and Zhang, X 2016, 'Investigating the impact of institutional pressures on information security compliance in organizations', in Proceedings of the 2016 Australasian Conference on Information Systems, Wollongong, Australia, 5-7 December 2016, pp. 1-12.


Document type: Conference Paper
Collection: Conference Papers

Attached Files
Name Description MIMEType Size
n2006073173.pdf Published Version application/pdf 768.57KB
Title Investigating the impact of institutional pressures on information security compliance in organizations
Author(s) Al-Kalbani, A
Deng, H
Kam, B
Zhang, X
Year 2016
Conference name ACIS2016: Occupying the Sweet Spot: IS at the Intersection
Conference location Wollongong, Australia
Conference dates 5-7 December 2016
Proceedings title Proceedings of the 2016 Australasian Conference on Information Systems
Publisher University of Wollongong
Place of publication Wollongong, Australia
Start page 1
End page 12
Total pages 12
Abstract The increasing threat to information security has created institutional pressures on organizations to comply with information security policies and standards. This paper presents an empirical study to investigate the impact of institutional pressures (coercive, normative, and mimetic) on information security compliance in organizations. The results show that coercive pressures that are manifested by regulatory agencies, normative pressures that are exerted through social pressures, and mimetic pressures that are manifested by security benefits positively influence information security compliance in public organizations. Furthermore, the results reveal that regulation and security benefits generate pressures on management to strengthen their commitments towards information security compliance in organizations. It is, however, worthwhile to notice that social pressures do not have a significant impact on management commitments towards information security compliance. The implications of this study indicate the criticality of institutional pressures for enhancing information security compliance in public organizations both directly and indirectly.
Subjects Information Systems Management
Keyword(s) Institutional pressures
Information security compliance
Management commitment
Copyright notice © 2016 Al-Kalbani, Deng, Kam, and Zhang. This is an open-access article distributed under the terms of the Creative Commons Attribution-NonCommercial 3.0 Australia License, which permits non-commercial use, distribution, and reproduction in any medium, provided the original author and ACIS are credited.
Versions
Version Filter Type
Access Statistics: 83 Abstract Views, 4 File Downloads  -  Detailed Statistics
Created: Thu, 11 May 2017, 13:29:00 EST by Catalyst Administrator
© 2014 RMIT Research Repository • Powered by Fez SoftwareContact us