Given the growing importance of data stewardship in today’s digital economy, the ability to better manage vulnerabilities associated with electronic data is of interest to organizational leadership. Human error is a vulnerability that increases the likelihood of electronic data risk, such as the threat of a data breach. One countermeasure against human error is the ability to measure human intent toward compliance with an information assurance (IA) policy, as one input for better managing the human factor within an organization. While large organizations are likely to have access to resources for managing the human factor, small to mid-size organizations are less likely to have access to similar resources. Thus, this paper explores the use of commonly available research tools to provide a poor man’s countermeasure for better managing the threat/vulnerability pair that is electronic data risk/human error. Our methodology uses logistic regression to evaluate the statistical significance of using ordinal data to measure human intent to comply with an IA policy as such a countermeasure. Our findings conclude that the application of this methodology provides a sound technique for measuring human error vulnerability, and thus better managing electronic data risk.
Acuna, Dennis C.; Suliman, Rajab; and Elmesmari, Nasir
"A Practitioner Methodology for Mitigating Electronic Data Risk Associated with Human Error,"
Journal of the Midwest Association for Information Systems (JMWAIS): Vol. 2021:
2, Article 2.
Available at: https://aisel.aisnet.org/jmwais/vol2021/iss2/2