Exploring Contrasting Effects of Trust in Organizational Security Practices and Protective Structures on Employees’ Security-Related Precaution Taking-Reference-Cited by-同舟云学术

Exploring Contrasting Effects of Trust in Organizational Security Practices and Protective Structures on Employees’ Security-Related Precaution Taking

Published:2024-01-08 Issue: Volume: Page:
ISSN:1047-7047
Container-title:Information Systems Research
language:en
Short-container-title:Information Systems Research

Author:

Greulich Malte¹^ORCID,Lins Sebastian¹^ORCID,Pienta Daniel²^ORCID,Thatcher Jason Bennett³⁴^ORCID,Sunyaev Ali¹⁵^ORCID

Affiliation:

1. Institute of Applied Informatics and Formal Description Methods, Department of Economics and Management, Karlsruhe Institute of Technology, 76049 Karlsruhe, Germany;

2. Department of Accounting and Information Management, University of Tennessee, Knoxville, Tennessee 37996;

3. Leeds School of Business, University of Colorado Boulder, Boulder, Colorado 80309;

4. Alliance Manchester Business School, University of Manchester, Manchester M15 6PB, United Kingdom;

5. KASTEL Security Research Labs, 76049 Karlsruhe, Germany

Abstract

Encouraging employees to take security precautions is a vital strategy that organizations can use to reduce their vulnerability to information security (ISec) threats. This study investigates how the bright- and dark-side effects of trust in organizational information security impact employees’ intention to take security precautions. Employees who trust organizational security practices are more committed to protecting the organization and are more willing to take security precautions. To foster trust in organizational security practices and security commitment, ISec managers should establish a trusting security climate to ensure that employees can speak freely about the security problems they face in their work and receive support to resolve those problems if needed. This study also alerts managers to the potential adverse consequences of employees’ trust in the organization’s protective structures. We find that employees’ trust in the organization’s protective structures can backfire, making employees complacent regarding security. Further analyses indicate that security mindfulness mediates the influence of security complacency and security commitment on precaution taking. This study contributes by exploring and verifying the bright- and dark-side effects of trust in organizational ISec.

Publisher

Institute for Operations Research and the Management Sciences (INFORMS)

Link

https://pubsonline.informs.org/doi/pdf/10.1287/isre.2021.0528

Reference141 articles.

1. The measurement and antecedents of affective, continuance and normative commitment to the organization

2. Practicing Safe Computing: A Multimethod Empirical Examination of Home Computer User Security Behavioral Intentions

3. Trust and the psychological contract

4. If someone is watching, I'll do what I'm asked: mandatoriness, control, and information security

Cited by 4 articles. 订阅此论文施引文献订阅此论文施引文献，注册后可以免费订阅5篇论文的施引文献，订阅后可以查看论文全部施引文献

1. Uncovering post-adoption usage of AI-based voice assistants: a technology affordance lens using a mixed-methods approach;European Journal of Information Systems;2024-07-04

2. Promoting Security Behaviors in Remote Work Environments: Personal Values Shaping Information Security Policy Compliance;Information Systems Research;2024-07-01

3. A qualitative systematic review of trust in technology;Journal of Information Technology;2024-05-24

4. Blockchain user digital identity big data and information security process protection based on network trust;Journal of King Saud University - Computer and Information Sciences;2024-04