How information security requirements stress employees
Ament C, Haag S (2016)
Publication Language: English
Publication Status: Published
Publication Type: Conference contribution, Conference Contribution
Publication year: 2016
Publisher: Association for Information Systems
Event location: Dublin
ISBN: 9780996683135
URI: https://www.scopus.com/record/display.uri?eid=2-s2.0-85019456988&origin=inward
Abstract
To increase information security awareness among their workforce and to achieve secure information systems (IS), decision-makers employ measures of information security, such as security policies or associated training and educational programs. However, these information security measures might also put stress on employees, so-called security-related stress, for instance, if they are perceived as difficult to understand, as an invasion of privacy, or if they give rise to conflicts of interest.
While previous IS security research directly applies the existing concept of technostress to the security context, we develop and validate a more specific and holistic construct of security-related stress manifested in multidimensional stressors of individuals’ work,personal, and social environment. A first empirical test with 165 participants does not only confirm the newly identified sub-dimensions, but also shows mixed effects of the interrelated but distinct sub-dimensions of security-related stress on information security policy compliance intention.
Involved external institutions
Germany (DE)How to cite
APA:
Ament, C., & Haag, S. (2016). How information security requirements stress employees. In Proceedings of the 2016 International Conference on Information Systems, ICIS 2016. Dublin, IE: Association for Information Systems.
MLA:
Ament, Clara, and Steffi Haag. "How information security requirements stress employees." Proceedings of the 2016 International Conference on Information Systems, ICIS 2016, Dublin Association for Information Systems, 2016.
BibTeX: Download