Information Security Compliance in Organizations: An Institutional Perspective-Reference-Cited by-同舟云学术

Information Security Compliance in Organizations: An Institutional Perspective

Published:2017-12-01 Issue:2 Volume:1 Page:104-114
ISSN:2543-9251
Container-title:Data and Information Management
language:en
Short-container-title:

Author:

AlKalbani Ahmed¹,Deng Hepu¹,Kam Booi¹,Zhang Xiaojuan²

Affiliation:

1. School of Business Information Technology and Logistics , RMIT University , Melbourne , Australia

2. School of Information Management , Wuhan University , Wuhan , China

Abstract

Abstract The increasing recognition of the importance of information security has created institutional pressures on organizations to comply with information security standards and policies for protecting their information. How such pressures influence information security compliance in organisations, however, is unclear. This paper presents an empirical study to investigate the impact of institutional pressures on information security compliance in organizations. With the use of structural equation modelling for analysing the data collected through an online survey, the study shows that coercive pressures, normative pressures, and mimetic pressures positively influence information security compliance in organizations. It reveals that the benefits of information security compliance motivate management to strengthen their commitments at information security compliance. Furthermore, the study finds out that social pressures do not have a significant impact on management commitments towards information security compliance. Theoretically this study contributes to the information security research by better understanding how institutional pressures can be used for enhancing information security compliance in organizations. Practically this study informs information security policy makers of the major institutional drivers for information security compliance.

Publisher

Walter de Gruyter GmbH

Subject

Geology,Ocean Engineering,Water Science and Technology

Reference48 articles.

1. Al-Kalbani, A, Deng, H & Kam, B (2015a), Investigating the role of socio-organizational factors in the information security compliance in organizations, Proceedings of the 26thAustralasian Conference on Information Systems (ACIS 2015) (pp. 1-12), Adelaide, Australia.

2. Al-Kelbani, A, Deng, H & Kam, B (2015b), Organisational security culture and information security compliance for e-government development: the moderating effect of social pressure, Proceedings of the 19th Pacific Asia Conference on Information Systems (PACIS 2015) (pp. 1-11). Atlanta, GA, United States: Association for Information Systems (AIS).

3. Al-Kalbani, A, Deng, H & Kam, B (2014), A Conceptual Framework for Information Security in Public Organizations for E-Government Development, in Felix B Tan, Deborah Bunker (ed.) Proceedings of the 25th Australasian Conference on Information Systems (ACIS 2014) (pp. 1-11.). Auckland, New Zealand: Auckland University of Technology.

4. Appari, A., Johnson, M. E., & Anthony, D. L. (2009). HIPAA Compliance: An Institutional Theory Perspective, Proceedings of the Amercian Confernece on Information Systems. pp. 252.

5. Kirsch, L. J., & Boss, S. R. (2007). The Last Line of Defense: Motivating Employees to Follow Corporate Security Guidelines. International Conference on Information Systems, Icis 2007, 103.

Cited by 10 articles. 订阅此论文施引文献订阅此论文施引文献，注册后可以免费订阅5篇论文的施引文献，订阅后可以查看论文全部施引文献

1. Information security objectives and the output legitimacy of ISO/IEC 27001: stakeholders’ perspective on expectations in private organizations in Sweden;Information Systems and e-Business Management;2023-08-21

2. Factors Affecting Citizen Adoption of E-Government in Developing Countries;Journal of Global Information Management;2023-02-10

3. ESASCF: Expertise Extraction, Generalization and Reply Framework for Optimized Automation of Network Security Compliance;IEEE Access;2023

4. Compliance, Integrity, and Prevention in the Corporate Sector: The Collective Mindsets of Compliance Officers in Germany;Organization, Management and Crime - Organisation, Management und Kriminalität;2023

5. Governing cybersecurity from the boardroom: Challenges, drivers, and ways ahead;Computers & Security;2022-10