ABSTRACT
This study presents an empirical investigation of employees’ extra-role behaviour in the information security context based on person – organisation fit theory. The perspective of fit evaluates the differences and similarities between information security policy makers and practitioners to provide employees with an approach to decide whether and how to participate in the implementation of extra security actions. We developed a research model and then conducted a survey and PLS-SEM analysis to test the corresponding hypothesis. The results illustrate that perceived demand – ability fit, perceived need – supply fit, and perceived value fit are effective in motivating security commitment. The empirical evidence shows that security commitment is a partial mediator between complementary fits (demand-ability fit and need-supply fit) and participation intention and is a full mediator between supplementary fit (value fit) and participation intention. In addition, apathy reduces motivation to engage in extra-role behaviour, while value fit and security commitment eliminate such apathy.
Acknowledgement
This study is supported by the National Natural Science Foundation of China under grant no. 71431002, 71731003, and 71421001.
Disclosure statement
All authors of this research paper declare that we have no conflict of interest.