SIG SEC - Information Security and Privacy
Loading...
Paper Type
ERF
Paper Number
1105
Description
Lack of employee compliance with information security policies is a key factor driving security incidents. Information security practitioners struggle to enforce policy compliance while employees try to curtail controls in favor of expediency and other perceived business and personal goals. This research-in-progress project utilizes the Design Science Research framework to develop an intervention based on a novel messaging strategy that aims to help information security practitioners improve employees’ behaviors through intrinsic motivation, thus increasing compliance with information security policies.
Recommended Citation
Giovannetti, Federico; Hevner, Alan; and de Vreede, Gert-Jan, "Designing a Messaging Strategy to Improve Information Security Policy Compliance" (2022). AMCIS 2022 Proceedings. 19.
https://aisel.aisnet.org/amcis2022/sig_sec/sig_sec/19
Designing a Messaging Strategy to Improve Information Security Policy Compliance
Lack of employee compliance with information security policies is a key factor driving security incidents. Information security practitioners struggle to enforce policy compliance while employees try to curtail controls in favor of expediency and other perceived business and personal goals. This research-in-progress project utilizes the Design Science Research framework to develop an intervention based on a novel messaging strategy that aims to help information security practitioners improve employees’ behaviors through intrinsic motivation, thus increasing compliance with information security policies.
When commenting on articles, please be friendly, welcoming, respectful and abide by the AIS eLibrary Discussion Thread Code of Conduct posted here.
Comments
SIG SEC