Effects of Sanctions, Moral Beliefs, and Neutralization on Information Security Policy Violations Across Cultures

Vance, Anthony; Boyer Fellow, Selvoy J.; Siponen, Mikko T.; Straub, Detmar W.

doi:10.1016/j.im.2019.103212

Final Draft

View/Open

3.8 Mb

Downloads:

Show download details Hide download details

Vance, A., Boyer Fellow, S. J., Siponen, M. T., & Straub, D. W. (2020). Effects of Sanctions, Moral Beliefs, and Neutralization on Information Security Policy Violations Across Cultures. Information and Management, 57(4), Article 103212. https://doi.org/10.1016/j.im.2019.103212

Published in

Information and Management

Authors

Vance, Anthony |

Boyer Fellow, Selvoy J. |

Siponen, Mikko T. |

Straub, Detmar W.

Date

2020

Discipline

Tietojärjestelmätiede Information Systems Science

Copyright

A principal concern of organizations is the failure of employees to comply with information security policies (ISPs). Deterrence theory is one of the most frequently used theories for examining ISP violations, yet studies using this theory have produced mixed results. Past research has indicated that cultural differences may be one reason for these inconsistent findings and have hence called for cross-cultural research on deterrence in information security. To address this gap, we formulated a model including deterrence, moral beliefs, shame, and neutralization techniques and tested it with the employees from 48 countries working for a large multinational company.

Publisher

Elsevier

ISSN Search the Publication Forum

0378-7206

License

Except where otherwise noted, this item's license is described as CC BY-NC-ND 4.0