The antecedents of employees' proactive information security behaviour: The perspective of proactive motivation

IF 6.5 2区管理学 Q1 INFORMATION SCIENCE & LIBRARY SCIENCE

Information Systems Journal Pub Date : 2023-11-22 DOI:10.1111/isj.12488

Feng Xu, Carol Hsu, Tawei (David) Wang, Paul Benjamin Lowry

{"title":"The antecedents of employees' proactive information security behaviour: The perspective of proactive motivation","authors":"Feng Xu, Carol Hsu, Tawei (David) Wang, Paul Benjamin Lowry","doi":"10.1111/isj.12488","DOIUrl":null,"url":null,"abstract":"Organisational information security (ISec) protection is undergoing a turbulent shift in the workplace environment. In an environment of ever-increasing risks of insider threats and external cyberattacks, individual employees are often expected to take the initiative to solve organisational security problems. This study therefore focuses on employees' proactive information security behaviours (ISBs)—behaviours that are self-initiated, change-oriented, and future-focused—and the motivations that compel employees to protect organisational assets. We ground our study in Parker et al. (2010) proactive motivation theory (ProMT) and develop an integrated multilevel model to examine the respective effects of proactive motivational states, that is, can-do, reason-to, and energised-to motivations, on employees' proactive ISBs. We also explore the roles of individual differences and contextual factors—namely, proactive personality and supervisory ISec support—and their influences on proactive motivational states. Data were collected from 210 employees situated in 55 departments distributed among multiple organisations located in China. The results show that supervisory ISec support positively influences employees' proactive motivational states and thereby boosts employees' proactive ISBs. Proactive personality negatively moderates the effect of supervisory ISec support on flexible security role orientation (reason-to motivation). By identifying the antecedents of employees' proactive ISBs, we make key theoretical contributions to ISec research and valuable practical contributions to organisational ISec management.","PeriodicalId":48049,"journal":{"name":"Information Systems Journal","volume":"34 4","pages":"1144-1174"},"PeriodicalIF":6.5000,"publicationDate":"2023-11-22","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"https://onlinelibrary.wiley.com/doi/epdf/10.1111/isj.12488","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"Information Systems Journal","FirstCategoryId":"91","ListUrlMain":"https://onlinelibrary.wiley.com/doi/10.1111/isj.12488","RegionNum":2,"RegionCategory":"管理学","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"Q1","JCRName":"INFORMATION SCIENCE & LIBRARY SCIENCE","Score":null,"Total":0}

引用次数: 0

Abstract

Organisational information security (ISec) protection is undergoing a turbulent shift in the workplace environment. In an environment of ever-increasing risks of insider threats and external cyberattacks, individual employees are often expected to take the initiative to solve organisational security problems. This study therefore focuses on employees' proactive information security behaviours (ISBs)—behaviours that are self-initiated, change-oriented, and future-focused—and the motivations that compel employees to protect organisational assets. We ground our study in Parker et al. (2010) proactive motivation theory (ProMT) and develop an integrated multilevel model to examine the respective effects of proactive motivational states, that is, can-do, reason-to, and energised-to motivations, on employees' proactive ISBs. We also explore the roles of individual differences and contextual factors—namely, proactive personality and supervisory ISec support—and their influences on proactive motivational states. Data were collected from 210 employees situated in 55 departments distributed among multiple organisations located in China. The results show that supervisory ISec support positively influences employees' proactive motivational states and thereby boosts employees' proactive ISBs. Proactive personality negatively moderates the effect of supervisory ISec support on flexible security role orientation (reason-to motivation). By identifying the antecedents of employees' proactive ISBs, we make key theoretical contributions to ISec research and valuable practical contributions to organisational ISec management.

Abstract Image

查看原文本刊更多论文

员工主动信息安全行为的前因：主动动机的视角

在工作环境中，组织信息安全（ISec）保护正在经历一场动荡的变革。在内部威胁和外部网络攻击风险不断增加的环境中，员工个人往往被期望主动解决组织的安全问题。因此，本研究重点关注员工的主动信息安全行为（ISBs）--即自我发起、以变化为导向、着眼于未来的行为，以及迫使员工保护组织资产的动机。我们的研究以 Parker 等人（2010 年）的积极主动动机理论（ProMT）为基础，建立了一个综合的多层次模型，以研究积极主动的动机状态（即 "能做"、"有理由做 "和 "有活力做 "的动机）对员工积极主动的 ISB 的影响。我们还探讨了个体差异和情境因素（即积极主动的个性和上司的 ISec 支持）的作用及其对积极主动动机状态的影响。我们收集了中国多家企业 55 个部门 210 名员工的数据。结果表明，上司的 ISec 支持会对员工的积极主动动机状态产生积极影响，从而促进员工的积极主动 ISBs。积极主动的人格对上级 ISec 支持对灵活的安全角色定位（理由到动机）的影响具有负向调节作用。通过确定员工积极主动的 ISBs 的前因，我们为 ISec 研究做出了重要的理论贡献，并为组织的 ISec 管理做出了宝贵的实践贡献。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

Information Systems Journal INFORMATION SCIENCE & LIBRARY SCIENCE-

CiteScore

14.60

自引率

7.80%

发文量

期刊介绍： The Information Systems Journal (ISJ) is an international journal promoting the study of, and interest in, information systems. Articles are welcome on research, practice, experience, current issues and debates. The ISJ encourages submissions that reflect the wide and interdisciplinary nature of the subject and articles that integrate technological disciplines with social, contextual and management issues, based on research using appropriate research methods.The ISJ has particularly built its reputation by publishing qualitative research and it continues to welcome such papers. Quantitative research papers are also welcome but they need to emphasise the context of the research and the theoretical and practical implications of their findings.The ISJ does not publish purely technical papers.