Sie können Bookmarks mittels Listen verwalten, loggen Sie sich dafür bitte in Ihr SLUB Benutzerkonto ein.
Medientyp:
E-Artikel
Titel:
Do employees in a “good” company comply better with information security policy? A corporate social responsibility perspective
Beteiligte:
Kim, Hyungjin Lukas;
Han, Jinyoung
Erschienen:
Emerald, 2019
Erschienen in:
Information Technology & People, 32 (2019) 4, Seite 858-875
Sprache:
Englisch
DOI:
10.1108/itp-09-2017-0298
ISSN:
0959-3845
Entstehung:
Anmerkungen:
Beschreibung:
PurposeThe purpose of this paper is to investigate the impact of corporate social responsibility (CSR) on employees’ compliance behavior concerning information security policy (ISP). A research model includes CSR activities as an antecedent of ISP compliance and as a mediator of the relationship between ISP compliance intention and the perceived costs of compliance.Design/methodology/approachIn total, 162 respondents were surveyed from organizations with more than 500 employees. This study used partial least squares (SmartPLS 3.0) to analyze and examine hypotheses.FindingsThe results show CSR’s influence as a mediator in the context of ISP compliance. In particular, moral CSR can affect employees’ ISP compliance intention positively and fully mediate the relationship between the costs of compliance and ISP compliance intention. Employees would like to comply with ISP when they recognize the benefits of ISP compliance and the costs of ISP noncompliance.Originality/valueThis study examines influential factors on ISP compliance considering cost-benefit factors from rational choice theory. Moreover, the study contributes to ISP compliance research by being the first attempt to consider CSR in an ISP compliance research context. The results provide insights on how to strategically implement CSR activities in terms of organizational information security.