Advanced search
Publication Cover
Journal of Computer Information Systems Volume 55, 2015 - Issue 3
Submit an article Journal homepage
1,021
Views
70
CrossRef citations to date
0
Altmetric
Original Articles

Impacts of Comprehensive Information Security Programs on Information Security Culture

Yan ChenAuburn University at Montgomery, Montgomery, AL36117
,
K. (Ram) RamamurthyUniversity of Wisconsin-Milwaukee, Milwaukee, WI53201-0742
&
Kuang-Wei WenUniversity of Wisconsin-La Crosse, La Crosse, WI54601
Pages 11-19 | Published online: 10 Dec 2015
 
Sample our Engineering & Technology journals, sign in here to start your access, latest two full volumes FREE to you for 14 days

Abstract

A large number of security breaches involve internal employee negligence and insider breach. This situation, coupled with the need to comply with regulatory mandates has led to the establishment of comprehensive information security programs in many organizations. However, the relationships between comprehensive information security programs and security culture are unclear. This research thus proposes a research model to evaluate the influences of key components of comprehensive information security programs on security culture and empirically tests it. The results indicate that SETA programs awareness has significant influences on security culture and on employees' awareness of organizational security policy, and that the awareness of security monitoring also impacts security culture. The proposed research model can be used as a benchmark to evaluate the effectiveness of comprehensive information security programs, to improve the design of such programs should gaps exist, and eventually assist in building a security culture.

Reprints and Corporate Permissions

Please note: Selecting permissions does not provide access to the full text of the article, please see our help page How do I view content?

To request a reprint or corporate permissions for this article, please click on the relevant link below:

Order Reprints Request Corporate Permissions

Academic Permissions

Please note: Selecting permissions does not provide access to the full text of the article, please see our help page How do I view content?

Obtain permissions instantly via Rightslink by clicking on the button below:

Request Academic Permissions

If you are unable to obtain permissions via Rightslink, please complete and submit this Permissions form. For more information, please visit our Permissions help page.

Related Research Data

The bring‐your‐own‐device unintended administrator: A perspective from Zimbabwe
Source: Wiley
Intentions to Comply Versus Intentions to Protect
Source: Wiley
Human factors in information leakage: mitigation strategies for information sharing integrity
Source: Emerald
Information security policies’ compliance: a perspective for higher education institutions
Source: Informa UK Limited
How senior management and workplace norms influence information security attitudes and self-efficacy
Source: Informa UK Limited
Enablers and processes for effective knowledge management
Source: Emerald
Organizational information security policies: a review and research framework
Source: Informa UK Limited
Cybercrimes prevention: promising organisational practices
Source: Emerald
A dimension-based information security culture model and its relationship with employees’ security behavior: A case study in Malaysian higher educational institutions
Source: Informa UK Limited
Understanding commitment and apathy in is security extra-role behavior from a person-organization fit perspective
Source: Informa UK Limited
Response awareness and instructional self-efficacy: influences on intent
Source: Emerald

Linking provided by 

Related research

People also read lists articles that other readers of this article have read.

Recommended articles lists articles that we recommend and is powered by our AI driven recommendation engine.

Cited by lists all citing articles based on Crossref citations.
Articles with the Crossref icon will open in a new tab.