Employee Information Security Practices: A Framework and Research Agenda
| dc.contributor.author | Hustad, Eli | |
| dc.contributor.author | Bekkevik, Frode Mathias | |
| dc.contributor.author | Holm, Ole Reidar | |
| dc.contributor.author | Vassilakopoulou, Polyxeni | |
| dc.date.accessioned | 2023-03-07T12:20:47Z | |
| dc.date.available | 2023-03-07T12:20:47Z | |
| dc.date.created | 2021-01-13T22:20:01Z | |
| dc.date.issued | 2020 | |
| dc.identifier.citation | Hustad, E., Bekkevik, F. M., Holm, O. R., Vassilakopoulou, P. (2020). Employee Information Security Practices: A Framework and Research Agenda. International Journal of E-Services and Mobile Applications, 12(2), 1-14. | en_US |
| dc.identifier.issn | 1941-627X | |
| dc.identifier.uri | https://hdl.handle.net/11250/3056431 | |
| dc.description | Author's accepted manuscript | en_US |
| dc.description.abstract | Employee information security practices are pivotal to prevent, detect, and respond to security incidents. This paper synthesizes insights from research on challenges related to employee information security practices and measures to address them. The challenges identified are associated to idiosyncratic aspects of communities and individuals within organizations (culture and personal characteristics) and to systemic aspects of organizations (procedural and structural arrangements). The measures identified aim to enhance systemic capabilities and to adapt security mechanisms to the idiosyncratic characteristics and are categorized as: (a) measures of training and awareness, (b) measures of organizational support, (c) measures of rewards and penalties. Further research is needed to explore the dynamics related to how challenges emerge, develop, and get addressed over time and also, to explore the interplay between systemic and idiosyncratic aspects. Additionally, research is needed on the role of security managers and how it can be reconfigured to suit flatter organizations | en_US |
| dc.language.iso | eng | en_US |
| dc.publisher | I G I Publishing | en_US |
| dc.rights | Navngivelse 4.0 Internasjonal | * |
| dc.rights.uri | http://creativecommons.org/licenses/by/4.0/deed.no | * |
| dc.title | Employee Information Security Practices: A Framework and Research Agenda | en_US |
| dc.type | Peer reviewed | en_US |
| dc.type | Journal article | en_US |
| dc.description.version | acceptedVersion | en_US |
| dc.rights.holder | © 2020 The Author(s) | en_US |
| dc.subject.nsi | VDP::Samfunnsvitenskap: 200::Biblioteks- og informasjonsvitenskap: 320::Informasjons- og kommunikasjonssystemer: 321 | en_US |
| dc.source.pagenumber | 1-14 | en_US |
| dc.source.volume | 12 | en_US |
| dc.source.journal | International Journal of E-Services and Mobile Applications | en_US |
| dc.source.issue | 2 | en_US |
| dc.identifier.doi | https://doi.org/10.4018/IJESMA.2020040101 | |
| dc.identifier.cristin | 1870969 | |
| dc.relation.project | Universitetet i Agder: 661019 | en_US |
| dc.source.articlenumber | 1 | en_US |
| cristin.qualitycode | 1 |
Tilhørende fil(er)
Denne innførselen finnes i følgende samling(er)
Med mindre annet er angitt, så er denne innførselen lisensiert som Navngivelse 4.0 Internasjonal