Given the short supply of empiricism in ISS research, existing empirical evidence needs to be processed further than the scope of a single paper may allow. Other fields of science have long recognized the need for higher level analyses of research results in order to make them accessible to practitioners and develop a knowledge base. In our paper we perform an exhaustive literature research in the realm of empirical ISS research. As one of the recent research hotspots, we perform a systematic review of research results in Information Security Policy (ISP) compliance. We analyze and discuss the heterogeneity of research results and suggest a presentation format that may allow ISS practitioners to base their ISP design decisions on.
Milicevic, Danijel and Goeken, Matthias, "Systematic Review and Meta-Analysis of IS Security Policy Compliance Research. First Steps towards Evidence-Based Structuring of the IS Security Domain" (2013). Wirtschaftsinformatik Proceedings 2013. 67.