Non-Compliant Mobile Device Usage and Information Systems Security: A Bystander Theory Perspective

This study tested the context of employees using their devices for both work and personal use, and non-compliant device usage of a person potentially resulting in Information Systems (IS) security threat to personal as well as work data and/or the devices. Integrating bystander and protection motivation theory (PMT) perspectives this paper studies bystanders' responses to IS security threats and the extent to which a perceived security threat motivates individual intention to act, in the context of non-compliant mobile device usage behaviors. It tests the role of an individual's threat perceptions to protect their own IS security, and as a bystander, protecting their peers or the IS security of their organization. Data collected from 431 individuals support the hypotheses that security awareness predicts perceived severity and protection motivation. Evaluation apprehension and diffusion of responsibility inhibit bystander's intentions to act against non-compliant mobile device usage behaviors, while awareness facilitates it. Theoretical contributions and practical implications of the research are discussed.

Download Full-text

Fear Appeals, Threat Perceptions, and Protection Motivation in Information Systems Security

Encyclopedia of Information Science and Technology, Third Edition ◽

10.4018/978-1-4666-5888-2.ch423 ◽

2015 ◽

pp. 4310-4316

Author(s):

Narasimha Paravastu ◽

Murugan Anandarajan

Keyword(s):

Information Systems ◽

Protection Motivation Theory ◽

Fear Appeals ◽

Protection Motivation ◽

Motivation Theory ◽

Information Systems Security ◽

Security Threat ◽

Threat Perceptions ◽

Systems Security ◽

Managerial Implications

Information security is important for organizations as well as individuals from the perspective of protection from data breaches, identity theft, malware and infections, hacking etc. This article presents the framework of Protection Motivation Theory and its constructs, and then reviews the past IS Literature on information systems security, from a protection motivation perspective. Specifically this article tries to explain how individuals perceive a fear appeal in an information systems security threat, and how the protection motivation framework of fear, threat perceptions of severity and vulnerability, impact the coping intentions of individuals to protect themselves from information systems security threats. This article further discusses the theoretical and managerial implications of protection motivation theory as it applies to information systems security.

Download Full-text

Protection Motivation Theory in Information Systems Security Research

ACM SIGMIS Database the DATABASE for Advances in Information Systems ◽

10.1145/3462766.3462770 ◽

2021 ◽

Vol 52 (2) ◽

pp. 25-67

Author(s):

Steffi Haag ◽

Mikko Siponen ◽

Fufan Liu

Keyword(s):

Information Systems ◽

Protection Motivation Theory ◽

Protection Motivation ◽

Security Threats ◽

Motivation Theory ◽

Road Map ◽

Systems Security ◽

Security Research ◽

Is Security ◽

New Research

Protection motivation theory (PMT) is one of the most commonly used theories to examine information security behaviors. Our systematic review of the application of PMT in information systems (IS) security and the comparison with its application for decades in psychology identified five categories of important issues that have not yet been examined in IS security research. Discussing these issues in terms of why they are relevant and important for IS security, and to what extent IS research has not considered them, offers new research opportunities associated with the study of PMT and IS security threats. We suggest how future studies can approach each of the open issues to provide a new road map for quantitative and qualitative IS scholars.

Download Full-text

Information Systems Security

Computer Security, Privacy and Politics ◽

10.4018/978-1-59904-804-8.ch010 ◽

2008 ◽

pp. 195-230

Author(s):

Frederick Ip ◽

Yolande E. Chan

Keyword(s):

Information Systems ◽

Organizational Performance ◽

Security Threats ◽

Educational Organizations ◽

Information Systems Security ◽

Security Breaches ◽

Financial Firms ◽

Systems Security ◽

Is Security ◽

Perceived Security

This study assists organizations and researchers in examining investments in IS security. A questionnaire was developed and administered to managers in Canadian financial firms and educational organizations. The survey examined security threats and the countermeasures adopted by organizations to prevent and respond to security breaches. Data gathered were used to investigate the relationships between investment in security, perceived security, and organizational performance.

Download Full-text

Integrating an information systems success model with perceived privacy, perceived security, and trust: the moderating role of Facebook addiction

Heliyon ◽

10.1016/j.heliyon.2021.e07899 ◽

2021 ◽

Vol 7 (9) ◽

pp. e07899

Author(s):

Mahmoud Maqableh ◽

Hazar Y. Hmoud ◽

Mais Jaradat ◽

Ra'ed Masa'deh

Keyword(s):

Information Systems ◽

Information Systems Success ◽

Success Model ◽

Information Systems Success Model ◽

Perceived Security ◽

Facebook Addiction ◽

Moderating Role

Download Full-text

Perceived Security Threats of Computerized Accounting Information Systems in the Egyptian Banking Industry

Journal of Information Systems ◽

10.2308/jis.2006.20.1.187 ◽

2006 ◽

Vol 20 (1) ◽

pp. 187-203 ◽

Cited By ~ 7

Author(s):

Ahmad A. Abu-Musa

Keyword(s):

Information Systems ◽

Banking Industry ◽

Accounting Information ◽

Internal Audit ◽

Entire Population ◽

Security Threats ◽

Accounting Information Systems ◽

Computer Viruses ◽

Perceived Security ◽

Bad Data

This paper investigates the perceived security threats to computerized accounting information systems (CAIS) in the Egyptian banking industry (EBI) by surveying the entire population of the EBI. Differences between the respondents' opinions regarding the perceived security threats have been identified and investigated in the context of the EBI. The results of the study reveal that accidental entry of bad data by employees, accidental destruction of data by employees, introduction of computer viruses to the system, natural and human-made disasters, employees' sharing of passwords, and misdirecting prints and distributing information to unauthorized people are the most significant perceived security threats to CAIS in the EBI. In all cases, the heads of internal audit departments reported higher occurrence frequencies of CAIS security threats compared to the heads of computer departments.

Download Full-text

Less Safe

Patriotic Information Systems ◽

10.4018/978-1-59904-594-8.ch002 ◽

2011 ◽

pp. 28-41

Author(s):

Harry Hammitt

Keyword(s):

Web Sites ◽

Critical Infrastructure ◽

Bush Administration ◽

Public Access ◽

Open Government ◽

Terrorist Attacks ◽

Government Agencies ◽

Sources Of Information ◽

Security Threat ◽

Perceived Security

Since the terrorist attacks of September 11, 2001, there has been a tightening of public access. In response to perceived security threats, government agencies have taken information down from Web sites, curtailed or restricted access to electronic sources of information, broadened the interpretation of FOIA exemptions, created or augmented new categories of restricted information, and prohibited public access for critical infrastructure information. These policy responses have been based both on the perceived security threat and an inhospitable attitude toward open government on the part of the Bush administration.

Download Full-text

Factors Influencing the Development of Information Systems Disaster Recovery Plan in the Ghanaian Banking Industry

International Journal of Strategic Decision Sciences ◽

10.4018/ijsds.2018070107 ◽

2018 ◽

Vol 9 (3) ◽

pp. 127-144

Author(s):

Frederick Pobee ◽

Daniel Opoku

Keyword(s):

Information Systems ◽

Disaster Recovery ◽

Banking Sector ◽

Behavioral Control ◽

Perceived Behavioral Control ◽

Perceived Severity ◽

Recovery Plan ◽

Perceived Vulnerability ◽

Recovery Planning ◽

Business Function

Information systems (IS) have become an integral part of many organizations as they depend on it to execute their critical business function. The purpose of this research was to explore the enablers and inhibitors of information systems disaster recovery planning in organizations in the Ghanaian banking sector. In order to achieve this purpose, the protection motivation theory and the theory of planned behavior was used as the theoretical lens for this study. Eight hypotheses were developed to test the research conceptualization. Data analysis was performed using SPSS version 20.0. Using a survey of 207 managers in the Ghanaian banking sector, this article shows the factors such as perceived vulnerability, perceived severity, response efficacy, self-efficacy, attitude, subjective norms and perceived behavioral control positively influences motivation and intention to develop an information systems disaster recovery plan in Ghanaian banking industries.

Download Full-text