Factors Influencing Information Security Standards and Policies Compliance by Nigeria Bank Employees

Abstract

It is common knowledge that cyber-attacks, theft, and internet fraud are widespread in the banking industry. This is no different in the Nigerian banking sector, where a lack of employee compliance with standards and policies exacerbates the situation. This paper reports on the effect of motivating factors on Nigerian bank employees' intention to comply with Information Security Standards and Policies (ISSsPs). The study uses multiple regression analysis of data obtained from 370 employees of selected banks in Nigeria. The findings indicate that behavioural factors such as normative beliefs and awareness of information security threats significantly influence employees' intention to comply with ISSsPs. In contrast, the severity of penalty and certainty of detection did not influence employees' intention to comply.