| Australasian Journal of Information Systems | |
| Information Security and People: A Conundrum for Compliance | |
| Linda Brennan2 Duy Dang Pham2 Hiep Cong Pham1 Joan Richardson2 | |
| [1] RMIT University Vietnam;RMIT University | |
| 关键词: security compliance; security management; end user security behaviour; | |
| DOI : 10.3127/ajis.v21i0.1321 | |
| 学科分类:计算机科学(综合) | |
| 来源: University of Canberra * Faculty of Information Sciences and Engineering | |
 PDF
|
|
【 摘 要 】
This evaluation of end-users and IT experts/managers’ attitudes towards performing IT security tasks indicates important differences between their perspectives on what is and is not necessary to establish a secure corporate IT environment. Through a series of case studies, this research illustrates that making it easier for end-users to comply does not necessarily equate to enhanced implementation of security measures. End-users want to be autonomous, competent, self-motivated and active participants in the development of secure environments. However, managers and experts want to limit autonomy to ensure that procedures are followed closely, rather than permitting flexibility. This results in the creation of environments that are intrinsically de-motivating rather than motivating end-users to become self-determined and self-regulating co-creators of a secure IT environment. The paper also discusses alternative approaches to developing a human system that works for end-users and experts.
【 授权许可】
Unknown
【 预 览 】
| Files | Size | Format | View |
|---|---|---|---|
| RO201912020431149ZK.pdf | 378KB |  download |
878987797
028-85220240
