Information security policy perceived compliance among staff in Palestine universities: An empirical pilot study

Mohammad Iriqat, Yousef and Ahlan, Abdul Rahman and Abdul Molok, Nurul Nuha (2019) Information security policy perceived compliance among staff in Palestine universities: An empirical pilot study. In: 2019 IEEE Jordan International Joint Conference on Electrical Engineering and Information Technology (JEEIT), 9th-11th April 2019, Amman, Jordan.

	PDF - Published Version Restricted to Registered users only Download (1MB) | Request a copy
	PDF (SCOPUS) Restricted to Registered users only Download (666kB) | Request a copy

Abstract

In today’s interconnected world, universities recognize the importance of protecting their information assets from internal and external threats. Being the possible insider threats to Information Security, employees are often coined as the weakest link. Both employees and organizations should be aware of this raising challenge. Understanding staff perception of compliance behaviour is critical for universities wanting to leverage their staff capabilities to mitigate Information Security risks. Therefore, this research seeks to get insights into staff perception based on factors adopted from several theories by using proposed constructs i.e. "perceived" practices/policies and "perceived" intention to comply. Drawing from the General Deterrence Theory, Protection Motivation Theory, Theory of Planned Behaviour and Information Reinforcement, within the context of Palestine universities, this paper integrates staff awareness of Information Security Policies (ISP) countermeasures as antecedents to “perceived” influencing factors (perceived sanctions, perceived rewards, perceived coping appraisal, and perceived information reinforcement). The empirical study is designed to follow a quantitative research approaches, use survey as a data collection method and questionnaires as the research instruments. Partial least squares structural equation modelling is used to inspect the reliability and validity of the measurement model and hypotheses testing for the structural model. The research covers ISP awareness among staff and seeks to assert that information security is the responsibility of all academic and administrative staff from all departments. Overall, our pilot study findings seem promising, and we found strong support for our theoretical model.

Item Type:	Conference or Workshop Item (Invited Papers)
Additional Information:	1716/71610
Uncontrolled Keywords:	Information Security, Information Security Policy Awareness, PLS-SEM, ISP
Subjects:	T Technology > T Technology (General) T Technology > T Technology (General) > T55.4 Industrial engineering.Management engineering. > T58.5 Information technology T Technology > T Technology (General) > T55.4 Industrial engineering.Management engineering. > T58.6 Management information systems
Kulliyyahs/Centres/Divisions/Institutes (Can select more than one option. Press CONTROL button):	Kulliyyah of Information and Communication Technology Kulliyyah of Information and Communication Technology Kulliyyah of Information and Communication Technology > Department of Information System Kulliyyah of Information and Communication Technology > Department of Information System
Depositing User:	Prof. Dr. Abd Rahman Ahlan
Date Deposited:	21 Aug 2019 10:34
Last Modified:	07 Jan 2020 01:17
URI:	http://irep.iium.edu.my/id/eprint/71610

Actions (login required)

View Item