The Establishment of Information Security Knowledge Sharing in Organizations: Antecedents and Consequences
| aut.relation.conference | Pacific Asia Conference on Information Systems | en_NZ |
| aut.researcher | Hassandoust, Farkhondeh | |
| dc.contributor.author | Hassandoust, F | en_NZ |
| dc.contributor.author | Subasinghage, MN | en_NZ |
| dc.contributor.author | Johnston, AC | en_NZ |
| dc.date.accessioned | 2020-10-22T22:32:17Z | |
| dc.date.available | 2020-10-22T22:32:17Z | |
| dc.date.copyright | 2020-06 | en_NZ |
| dc.date.issued | 2020-06 | en_NZ |
| dc.description.abstract | Drawing on the extant literature on information security and neo-institutional theory, we develop and test a theoretical model to investigate the antecedents and consequences of the establishment of information security knowledge sharing (ISKS) in organizations. The model was tested using survey data from 403 top managers, who are aware of information security policies of their organizations. Our results suggest that external information security knowledge resources find their way into the organization by normative, mimetic, and coercive means, but much of their influence on ISKS practices are mediated by ISKS beliefs held by top management. Results highlight that firms face uncertainty in their ISKS practices and find themselves simply mirroring the practices of their peers without a real understanding of how that approach fits their organization’s capacity for ISKS. Our findings emphasize the importance of ISKS practices for ensuring security compliance and the establishment and proliferation of an effective security culture. | |
| dc.identifier.citation | PACIS 2020 Proceedings. 244. https://aisel.aisnet.org/pacis2020/244 | |
| dc.identifier.uri | https://hdl.handle.net/10292/13735 | |
| dc.publisher | Association for Information Systems (AIS) | |
| dc.relation.uri | https://aisel.aisnet.org/pacis2020/244/ | en_NZ |
| dc.rights | Authors retain copyright for material published as part of AIS conference proceedings. | |
| dc.rights.accessrights | OpenAccess | en_NZ |
| dc.subject | Information security knowledge sharing; Neo-institutional theory; Security compliance; Security culture | |
| dc.title | The Establishment of Information Security Knowledge Sharing in Organizations: Antecedents and Consequences | en_NZ |
| dc.type | Conference Contribution | |
| pubs.elements-id | 382553 | |
| pubs.organisational-data | /AUT | |
| pubs.organisational-data | /AUT/Business, Economics & Law | |
| pubs.organisational-data | /AUT/Business, Economics & Law/Business Information System | |
| pubs.organisational-data | /AUT/Faculty of Business, Economics and Law | |
| pubs.organisational-data | /AUT/Faculty of Business, Economics and Law/Business Information Systems | |
| pubs.organisational-data | /AUT/PBRF | |
| pubs.organisational-data | /AUT/PBRF/PBRF Business Economics and Law |
Files
Original bundle
1 - 1 of 1
Loading...
- Name:
- Published Version#The Establishment of Information Security Knowledge Sharing in Or.pdf
- Size:
- 412.03 KB
- Format:
- Adobe Portable Document Format
- Description:
- Conference Contribution
License bundle
1 - 1 of 1
Loading...
- Name:
- AUT Grant of Licence for Tuwhera Aug 2018.pdf
- Size:
- 276.29 KB
- Format:
- Adobe Portable Document Format
- Description: