Bridging the divide: A qualitative comparison of information security thought patterns between information security professionals and ordinary organizational insiders

Bridging the divide: A qualitative comparison of information security thought patterns between information security professionals and ordinary organizational insiders

Organizational insiders have considerable influence on the effectiveness of information security efforts. However, most research conducted in this area fails to examine what these individuals believe about organizational security efforts. To help bridge this gap, this study assesses the mindset of i...

Ausführliche Beschreibung

Gespeichert in:
Bibliographische Detailangaben
Veröffentlicht in:Information & management 2014-07, Vol.51 (5), p.551-567
Hauptverfasser: Posey, Clay, Roberts, Tom L., Lowry, Paul Benjamin, Hightower, Ross T.
Format: Artikel
Sprache:eng
Schlagworte:
Applied sciences
Behavioral information security
Comparative analysis
Computer science
control theory
systems
Data integrity
Exact sciences and technology
Firm modelling
Information professionals
Memory and file management (including protection and security)
Memory organisation. Data processing
Operational research and scientific management
Operational research. Management science
Organizational behavior
Organizational insiders
Protection motivation theory
Qualitative analysis
Risk assessment
Risk theory. Actuarial science
Security management
Security professionals
Software
Online-Zugang:Volltext
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
Beschreibung
Zusammenfassung:Organizational insiders have considerable influence on the effectiveness of information security efforts. However, most research conducted in this area fails to examine what these individuals believe about organizational security efforts. To help bridge this gap, this study assesses the mindset of insiders regarding their relationship with information security efforts and compares it against the mindset of information security professionals. Interviews were conducted with 22 ordinary insiders and 11 information security professionals, an effort that provides insight into how insiders gauge the efficacy of recommended responses to information security threats. Several key differences between insiders’ and professionals’ security mindsets are also discussed.
ISSN:0378-7206
1872-7530
DOI:10.1016/j.im.2014.03.009