• DocumentCode
    1781886
  • Title

    Does Explicit Information Security Policy Affect Employees´ Cyber Security Behavior? A Pilot Study

  • Author

    Ling Li ; Wu He ; Ivan, Ash ; Li Xu ; Anwar, Mohd ; Xiaohong Yuan

  • Author_Institution
    Old Dominion Univ., Norfolk, VA, USA
  • fYear
    2014
  • fDate
    2-3 Aug. 2014
  • Firstpage
    169
  • Lastpage
    173
  • Abstract
    In this pilot study, we have (i) examined the relative importance of ten factors that can be used for developing new training methods and materials to improve employees´ awareness and skills to defend against cyber risks, and (ii) investigated the relationship between an explicit security policy at the organizational level and individual employee´s behavior and beliefs toward cybersecurity issues. Our results show that an explicit cybersecurity policy does positively affect employee´s behavior towards information security risks. The insights drawn from this pilot study can be employed toward encouraging and enhancing employees´ cybersecurity behavior both in the workplace and outside the workplace.
  • Keywords
    employee welfare; security of data; social aspects of automation; cyber risks; employee awareness; employee cyber security behavior; employee skills; explicit cybersecurity policy; explicit information security policy; training methods; Companies; Computer security; Information security; Reliability; Training; cues to action; cyber security behavior; information security; pilot study; self-efficacy;
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    Enterprise Systems Conference (ES), 2014
  • Conference_Location
    Shanghai
  • Print_ISBN
    978-1-4799-5553-4
  • Type

    conf

  • DOI
    10.1109/ES.2014.66
  • Filename
    6997038
    • Link To Document
    https://search.isc.ac/dl/search/defaultta.aspx?DTC=49&DC=1781886