The Library
Motivation and opportunity based model to reduce information security insider threats in organisations
Tools
Sohrabi Safa, Nader , Maple, Carsten, Watson, Tim and Von Solms, Rossouw (2018) Motivation and opportunity based model to reduce information security insider threats in organisations. Journal of Information Security and Applications, 40 . pp. 247-257. doi:10.1016/j.jisa.2017.11.001 ISSN 2214-2126.
|
PDF
WRAP-motivation-opportunity-based-model-reduce-information-security-insider-threats-organisation-Maple-2017.pdf - Accepted Version - Requires a PDF viewer. Available under License Creative Commons Attribution Non-commercial No Derivatives 4.0. Download (1638Kb) | Preview |
Official URL: https://doi.org/10.1016/j.jisa.2017.11.001
Abstract
Information technology has brought many advantages for organisations, but information security is still a major concern in this domain. Users, whether intentionally or through negligence, are a great potential of risk to information assets. The lack of awareness, ignorance, negligence, resistance, disobedience, apathy and mischievous are root of information security incidents in organisations. As such, insider threats have attracted a number of experts’ attention in this domain. Two particularly important considerations when exploring insider threats are motivation and opportunity. The most significant aspect of this research is derived from two fundamental theories – Social Bond Theory (SBT), used to motivate misbehaviour avoidance, and Situational Crime Prevention Theory (SCPT), to reduce the opportunities for misbehaviour. The results of data analysis show that situational prevention factors such as increasing the effort and risk, reducing the rewards and removing excuses can have a significant effect on negative attitudes towards misbehaviour, though reducing provocations does not have any effect on attitudes. Further, social bond factors such as commitment to organisational policies and procedures, involvement in information security activities and personal norms have significant effects on negative attitude towards misbehaviour. However, the attachment does not have any significant effect on employees’ attitude in order to avoid misbehaviour. The findings also show that negative attitudes towards misbehaviour influence employees’ intention positively, and in turn intention to avoid misbehaviour reduces insider threat behaviour. The outputs of this study shed some light on factors to reduce misbehaviour in the domain of information security for academics and practitioners.
Item Type: | Journal Article | ||||||||
---|---|---|---|---|---|---|---|---|---|
Subjects: | H Social Sciences > HV Social pathology. Social and public welfare Q Science > QA Mathematics > QA76 Electronic computers. Computer science. Computer software |
||||||||
Divisions: | Faculty of Science, Engineering and Medicine > Engineering > WMG (Formerly the Warwick Manufacturing Group) | ||||||||
Library of Congress Subject Headings (LCSH): | Computer security, Business -- Data processing -- Security measures, Computer networks -- Security measures, Employee crimes -- Prevention, Data protection, Crime Prevention -- Social aspects | ||||||||
Journal or Publication Title: | Journal of Information Security and Applications | ||||||||
Publisher: | Elsevier Advanced Technology | ||||||||
ISSN: | 2214-2126 | ||||||||
Official Date: | June 2018 | ||||||||
Dates: |
|
||||||||
Volume: | 40 | ||||||||
Page Range: | pp. 247-257 | ||||||||
DOI: | 10.1016/j.jisa.2017.11.001 | ||||||||
Status: | Peer Reviewed | ||||||||
Publication Status: | Published | ||||||||
Access rights to Published version: | Restricted or Subscription Access | ||||||||
Date of first compliant deposit: | 21 December 2017 | ||||||||
Date of first compliant Open Access: | 5 March 2019 | ||||||||
Related URLs: |
Request changes or add full text files to a record
Repository staff actions (login required)
View Item |
Downloads
Downloads per month over past year