员工对信息系统安全程序的遵从性具有普遍性和文化依赖性

IF 3 4区管理学 Q1 INFORMATION SCIENCE & LIBRARY SCIENCE

Journal of Global Information Technology Management Pub Date : 2020-01-02 DOI:10.1080/1097198X.2019.1701355

Mari Karjalainen, M. Siponen, Petri Puhakainen, Suprateek Sarker

{"title":"员工对信息系统安全程序的遵从性具有普遍性和文化依赖性","authors":"Mari Karjalainen, M. Siponen, Petri Puhakainen, Suprateek Sarker","doi":"10.1080/1097198X.2019.1701355","DOIUrl":null,"url":null,"abstract":"ABSTRACT Employee information systems security behavior (ISSB) is a key concern for organizations. Previous studies have proposed models aimed at explaining employees’ ISSB and related behavioral change. While these studies have contributed to our understanding of the reasons for ISSB (change), there is a lack of research related to cultural differences and distinguishing cultural-specific reasons for ISSB. This paper takes the first step in addressing this research gap by theorizing about employee ISSB based on empirical material collected in Finland, Switzerland, the UAE, and China. This paper suggests that ISSB constitute a learned information systems security (ISS) conventions that may be somewhat generic across different cultures; however, different paradigms of learning seem to be effective in different cultures for supporting behavioral change. From a theoretical perspective, the results help us to understand why employees comply or do not comply with ISS procedures. This study also highlights the need for future research on employee compliance to understand cultural differences regarding key ISS interventions. Finally, from a managerial perspective, the theory suggests that different cultures require different ISS interventions.","PeriodicalId":45982,"journal":{"name":"Journal of Global Information Technology Management","volume":"8 1","pages":"24 - 5"},"PeriodicalIF":3.0000,"publicationDate":"2020-01-02","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"12","resultStr":"{\"title\":\"Universal and Culture-dependent Employee Compliance of Information Systems Security Procedures\",\"authors\":\"Mari Karjalainen, M. Siponen, Petri Puhakainen, Suprateek Sarker\",\"doi\":\"10.1080/1097198X.2019.1701355\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"ABSTRACT Employee information systems security behavior (ISSB) is a key concern for organizations. Previous studies have proposed models aimed at explaining employees’ ISSB and related behavioral change. While these studies have contributed to our understanding of the reasons for ISSB (change), there is a lack of research related to cultural differences and distinguishing cultural-specific reasons for ISSB. This paper takes the first step in addressing this research gap by theorizing about employee ISSB based on empirical material collected in Finland, Switzerland, the UAE, and China. This paper suggests that ISSB constitute a learned information systems security (ISS) conventions that may be somewhat generic across different cultures; however, different paradigms of learning seem to be effective in different cultures for supporting behavioral change. From a theoretical perspective, the results help us to understand why employees comply or do not comply with ISS procedures. This study also highlights the need for future research on employee compliance to understand cultural differences regarding key ISS interventions. Finally, from a managerial perspective, the theory suggests that different cultures require different ISS interventions.\",\"PeriodicalId\":45982,\"journal\":{\"name\":\"Journal of Global Information Technology Management\",\"volume\":\"8 1\",\"pages\":\"24 - 5\"},\"PeriodicalIF\":3.0000,\"publicationDate\":\"2020-01-02\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"12\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"Journal of Global Information Technology Management\",\"FirstCategoryId\":\"91\",\"ListUrlMain\":\"https://doi.org/10.1080/1097198X.2019.1701355\",\"RegionNum\":4,\"RegionCategory\":\"管理学\",\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"Q1\",\"JCRName\":\"INFORMATION SCIENCE & LIBRARY SCIENCE\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"Journal of Global Information Technology Management","FirstCategoryId":"91","ListUrlMain":"https://doi.org/10.1080/1097198X.2019.1701355","RegionNum":4,"RegionCategory":"管理学","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"Q1","JCRName":"INFORMATION SCIENCE & LIBRARY SCIENCE","Score":null,"Total":0}

引用次数: 12

摘要

员工信息系统安全行为(ISSB)是组织关注的关键问题。以往的研究已经提出了一些模型来解释员工的ISSB和相关的行为改变。虽然这些研究有助于我们理解ISSB(变化)的原因，但缺乏与文化差异和区分ISSB的文化特异性原因相关的研究。本文基于芬兰、瑞士、阿联酋和中国收集的经验材料，对员工ISSB进行了理论化，从而迈出了解决这一研究空白的第一步。本文认为，ISSB构成了一种习得的信息系统安全(ISS)惯例，可能在不同的文化中有些通用;然而，在不同的文化中，不同的学习范式似乎对支持行为改变是有效的。从理论的角度来看，研究结果有助于我们理解员工遵守或不遵守ISS流程的原因。本研究还强调了未来对员工依从性研究的必要性，以了解关键ISS干预措施的文化差异。最后，从管理的角度来看，该理论表明不同的文化需要不同的ISS干预。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文本刊更多论文

Universal and Culture-dependent Employee Compliance of Information Systems Security Procedures

ABSTRACT Employee information systems security behavior (ISSB) is a key concern for organizations. Previous studies have proposed models aimed at explaining employees’ ISSB and related behavioral change. While these studies have contributed to our understanding of the reasons for ISSB (change), there is a lack of research related to cultural differences and distinguishing cultural-specific reasons for ISSB. This paper takes the first step in addressing this research gap by theorizing about employee ISSB based on empirical material collected in Finland, Switzerland, the UAE, and China. This paper suggests that ISSB constitute a learned information systems security (ISS) conventions that may be somewhat generic across different cultures; however, different paradigms of learning seem to be effective in different cultures for supporting behavioral change. From a theoretical perspective, the results help us to understand why employees comply or do not comply with ISS procedures. This study also highlights the need for future research on employee compliance to understand cultural differences regarding key ISS interventions. Finally, from a managerial perspective, the theory suggests that different cultures require different ISS interventions.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

Journal of Global Information Technology Management INFORMATION SCIENCE & LIBRARY SCIENCE-

CiteScore

4.10

自引率

10.00%

发文量

期刊介绍： The Journal of Global Information Technology Management (JGITM) is a refereed international journal that is supported by Global IT scholars from all over the world. JGITM publishes articles related to all aspects of the application of information technology for international business. The journal also considers a variety of methodological approaches and encourages manuscript submissions from authors all over the world, both from academia and industry. In addition, the journal will also include reviews of MIS books that have bearing on global aspects. Practitioner input will be specifically solicited from time-to-time in the form of invited columns or interviews. Besides quality work, at a minimum each submitted article should have the following three components: an MIS (Management Information Systems) topic, an international orientation (e.g., cross cultural studies or strong international implications), and evidence (e.g., survey data, case studies, secondary data, etc.). Articles in the Journal of Global Information Technology Management include, but are not limited to: -Cross-cultural IS studies -Frameworks/models for global information systems (GIS) -Development, evaluation and management of GIS -Information Resource Management -Electronic Commerce -Privacy & Security -Societal impacts of IT in developing countries -IT and Economic Development -IT Diffusion in developing countries -IT in Health Care -IT human resource issues -DSS/EIS/ES in international settings -Organizational and management structures for GIS -Transborder data flow issues -Supply Chain Management -Distributed global databases and networks -Cultural and societal impacts -Comparative studies of nations -Applications and case studies