Mitigating security stress: Exploring the contingent role of collaborative communication in enhancing information security compliance

Abstract

The increasing complexity of organizational information security (IS) policies underscores the critical need to address employee stress and its impact on compliance intentions. While prior research has primarily focused on technological advancements and regulatory enforcement, limited attention has been given to the psychological burden these measures place on employees and the role of organizational strategies in mitigating such challenges. This study bridges this gap by examining how IS role stress and strain, induced by stringent security policies, negatively influence compliance intentions and explores the moderating effects of collaborative communication as a potential solution. Drawing on the Person-Environment Fit model, the study conceptualizes IS role stress through dimensions of conflict and ambiguity and IS role strain through anxiety and fatigue. These constructs were empirically tested using structural equation modeling with survey data from 421 employees in organizations with established IS policies. Results reveal that IS role stress significantly increases strain and reduces compliance intentions, while collaborative communication moderates the strain's adverse effects on compliance. The findings emphasize the detrimental impact of poorly integrated security policies, which create stress and strain, ultimately undermining organizational security goals. However, fostering open, rational, and reciprocal communication mitigates these challenges, promoting a supportive environment for compliance. The findings offer actionable strategies for organizations, such as simplifying policy communication, aligning security tasks with work goals, and cultivating collaborative organizational institutions to balance employees’ vocational well-being with robust human-centric security frameworks.