Conceptualizing a Framework to Enhance Information Security Culture and Compliance Behavior in Organizations through Protection Motivation Theory
Abstract
Ensuring information security compliance is essential for securing organizational data. However, comprehending the factors that impact employees' compliance behavior remains challenging. Scholars have proposed that an established Information Security Culture (ISC) in organization may impact employee compliance with policies of information security. Existing models often address only partial aspects of Information Security Culture (ISC) or lack integration of comprehensive behavioral theories. The aim of this study is to propose an enhanced conceptual framework that identifies all elements of ISC and their influence on employees' compliance with the policies of information security. Aligning with well-established concepts of organizational culture and ISC, the framework was developed by incorporating important elements from the literature. The employees’ information security behavior was explained by the Protection Motivation Theory (PMT) to offer comprehensive insights about compliance behavior. It is believed that this conceptual framework will provide more precise results on the correlations between ISC and compliance behavior of employees towards information security regulations.
Downloads
Published
Issue
Section
License
Authors submitting articles to the IJITLS warrent that the work is original and that she/he is the author of the submission together with the named co-authors; to the extend the submission incorporates text passages, figures, data or other material from the work of others, the submitting author has obtained any necessary permission.
Articles in this journal are published under the Creative Commons Attribution Licence (CC-BY 4.0).
By submitting an article, the author grants to this journal the non-exclusive right to publish it. The author retains the copyright and the publishing rights for his article without any restrictions.
