NotesFAQContact Us
Search Tips
Back to results
ERIC Number: ED515535
Record Type: Non-Journal
Publication Date: 2009
Pages: 276
Abstractor: As Provided
ISBN: ISBN-978-1-1096-4958-1
Getting Employees Involved in Information Security: The Case of Strong Passwords
Taylor, Richard G.
ProQuest LLC, Ph.D. Dissertation, University of Houston
With the increasing amount and severity of information security incidents, organizations are constantly looking for better ways to protect their information. The implementation of physical safeguards such as firewalls and intrusion detection systems is an integral part on an organization's overall information security; however these safeguards only provide limited protection, and managers are challenged to find new ways to improve the overall security of their organizations' information. One such way is to get employees involved in the information security process. To do so, managers must understand factors that motivate employee information security behavior. However, little research attention has been given to this issue. In addition, research that has examined this issue primarily focuses on preventing negative security behavior, such as reducing hacking and employee fraud. In contrast, this dissertation examines employees' motivations to perform positive security behaviors, such as creating and maintaining strong passwords. To this end, it develops a model based on the theory of planned behavior and motivation theories. Specifically, extrinsic motivation factors were adapted from the theory of planned behavior, and include management pressure and peer pressure as well as behavioral beliefs. Intrinsic and obligation motivation factors include task enjoyment, job satisfaction, conscientiousness, and perceived fairness; these were operationalized based on the organizational citizenship behavior literature. The specific information security behavior used to test the model is the creation of passwords that will provide better protection of organizational information, referred to as strong passwords. Data are collected from surveys distributed to employees in the financial services industry, and then analyzed using structured equation modeling. The analyses indicate that the extrinsic, intrinsic, and obligation factors explain 60% of the variance in the employees' motivations to create strong passwords. [The dissertation citations contained here are published with the permission of ProQuest LLC. Further reproduction is prohibited without permission. Copies of dissertations may be obtained by Telephone (800) 1-800-521-0600. Web page:]
ProQuest LLC. 789 East Eisenhower Parkway, P.O. Box 1346, Ann Arbor, MI 48106. Tel: 800-521-0600; Web site:
Publication Type: Dissertations/Theses - Doctoral Dissertations
Education Level: N/A
Audience: N/A
Language: English
Sponsor: N/A
Authoring Institution: N/A