Abstract

This paper presents the summarized results of a data gathering operation, conducted as part of IRB approved research into the effects of a comprehensive computer security policy on human computer security policy compliance. For this study, a comprehensive computer security policy was defined as an enterprise policy encompassing all aspects of computer security including IT computer security and OT computer security, as opposed to only one domain or the other. The survey instrument included a questionnaire that utilized a Likert scale for belief strength measurement. In addition to questions designed as reflective indicators for latent constructs, the questionnaire included questions to authenticate participants and to gather demographic data. The empirical findings of this study suggest manifest support, regardless of domain, for human intent to comply with a comprehensive computer security policy.

Download

Share

COinS