Enforcing Information System Security: Policies and Procedures for Employee Compliance

• Published in: International journal on semantic web and information systems Vol. 19; no. 1; pp. 1 - 17
• Main Authors: Mutambik, Ibrahim, Almuqrin, Abdullah, Zhang, Justin Zuopeng, Alomran, Abdulaziz
• Format: Journal Article
• Language: English
• Published: Hershey IGI Global 01.01.2023
• Subjects: Attitudes; Cybersecurity; Policies; Ransomware
• ISSN: 1552-6283; 1552-6291
• DOI: 10.4018/IJSWIS.331396

Every year brings numerous security breaches that lead to highly destructive ransomware attacks, data leaks, and reputational damage to governments, companies, and other organizations around the world. As a result, there is a growing need to ensure that workers comply with critical policies put in place to avoid such incidents. This study investigated how factors from social bond theory and involvement theory affected compliance with information security policies and procedures. All of the factors examined were found to have a significant influence on attitudes about compliance, and attitude had a significant impact on intention to comply. The findings of this study revealed that it is vital to raise employees' awareness about compliance with security policies by improving their information security behavior. Moreover, all the factors were found to have a significant influence on the attitude of employees towards compliance with their organizational information security policies and procedures.