Abstract

Organizations invest manpower and resources to ensure that sensitive corporate data is secure in the hands of its employees. Information security policies of these organizations explicitly state responsibilities for employees. But there is a massive gap between employee security performance and understanding of their information security requirements. In this study, we explore the factors that can enhance information security job performance of employees within organizations. We argue that employee information security performance can be enhanced by developing organizational security competencies. We conduct the argument through a case study of a public sector bank in India. The in-depth case study allows us to develop a theoretical understanding of how different aspects of organizational competence allow organizations to come together to enhance information security performance.

Share

COinS