Positive Organizational Behaviour and Personal Strengths

Pillars for Increasing Employees’ Compliance with Information Security Policies

Jamal El-Den, Nelson Menzes, Sami Azam, Ali Baydoun

Research output: Chapter in Book/Report/Conference proceedingConference Paper published in ProceedingsResearchpeer-review

Abstract

With the increase in the use of information systems, the threat of misuse and leaking of organization’s confidential data has also increased. Employees are the biggest asset of any organization but they are at the same time responsible for 90% of the information security breaches. To reduce employees’ information security violations, many theories such as General Deterrence Theory, Protection Motivation theory, Theory of Planned Behaviour and Rational Choice Theory have been introduced over the years. The majority of these theories and models focus on factors such as Job demands, Job Resources and effect of incentives to address employees’ Information security violations. However, Employees positive behaviour and individuals’ strengths have not been addressed in the literature to find their effects on employees’ security compliance. The authors developed a model which intends to increase the employees’ information security compliance within the organization based on their positive traits such as enthusiasm, happiness and Attitude and personal strengths such as past experiences, education and past knowledge. These traits and strengths should be imbedded in both the culture and the policies of the organization. Based on the model, the research explored the effects of employees’ Job demands, Job resources, Negative employee behaviour, personal strengths and positive traits on their intentions to comply with the information security policies of the organization. A questionnaire was developed and Data were collected from three organizations that participated in a confidential survey to test the developed hypothesis which were set based on the model. The research findings suggested that the employees’ Positive traits and personal strengths such as attitude, enthusiasm, happiness, know-how, past knowledge and expertise have considerable effects on their intentions to comply with the information security policies.
Original languageEnglish
Title of host publication18th International Conference on Business, Economics, Management and Marketing
Place of PublicationBangkok, Thailand
PublisherWASET
Number of pages6
Publication statusPublished - 2016
Event18th International Conference on Business, Economics, Management and Marketing - Bangkok, Thailand, Bangkok, Thailand
Duration: 12 Dec 201613 Dec 2016
Conference number: 16TH12ICBEMM
https://waset.org/conference/2016/12/bangkok/ICBEMM

Conference

Conference18th International Conference on Business, Economics, Management and Marketing
Abbreviated titleICBEMM
CountryThailand
CityBangkok
Period12/12/1613/12/16
Internet address

Fingerprint

Employees
Security policy
Positive organizational behavior
Information security
Job resources
Job demands
Violations
Happiness
Breach
Rational choice theory
Deterrence
Incentives
Employee behaviour
Information systems
Questionnaire
Theory of planned behavior
Threat
Assets
Factors
Expertise

Cite this

El-Den, J., Menzes, N., Azam, S., & Baydoun, A. (2016). Positive Organizational Behaviour and Personal Strengths: Pillars for Increasing Employees’ Compliance with Information Security Policies. In 18th International Conference on Business, Economics, Management and Marketing Bangkok, Thailand: WASET.
El-Den, Jamal ; Menzes, Nelson ; Azam, Sami ; Baydoun, Ali. / Positive Organizational Behaviour and Personal Strengths : Pillars for Increasing Employees’ Compliance with Information Security Policies. 18th International Conference on Business, Economics, Management and Marketing. Bangkok, Thailand : WASET, 2016.
@inproceedings{f5bbd8c1716f48eab4a07d1649644120,
title = "Positive Organizational Behaviour and Personal Strengths: Pillars for Increasing Employees’ Compliance with Information Security Policies",
abstract = "With the increase in the use of information systems, the threat of misuse and leaking of organization’s confidential data has also increased. Employees are the biggest asset of any organization but they are at the same time responsible for 90{\%} of the information security breaches. To reduce employees’ information security violations, many theories such as General Deterrence Theory, Protection Motivation theory, Theory of Planned Behaviour and Rational Choice Theory have been introduced over the years. The majority of these theories and models focus on factors such as Job demands, Job Resources and effect of incentives to address employees’ Information security violations. However, Employees positive behaviour and individuals’ strengths have not been addressed in the literature to find their effects on employees’ security compliance. The authors developed a model which intends to increase the employees’ information security compliance within the organization based on their positive traits such as enthusiasm, happiness and Attitude and personal strengths such as past experiences, education and past knowledge. These traits and strengths should be imbedded in both the culture and the policies of the organization. Based on the model, the research explored the effects of employees’ Job demands, Job resources, Negative employee behaviour, personal strengths and positive traits on their intentions to comply with the information security policies of the organization. A questionnaire was developed and Data were collected from three organizations that participated in a confidential survey to test the developed hypothesis which were set based on the model. The research findings suggested that the employees’ Positive traits and personal strengths such as attitude, enthusiasm, happiness, know-how, past knowledge and expertise have considerable effects on their intentions to comply with the information security policies.",
author = "Jamal El-Den and Nelson Menzes and Sami Azam and Ali Baydoun",
year = "2016",
language = "English",
booktitle = "18th International Conference on Business, Economics, Management and Marketing",
publisher = "WASET",

}

El-Den, J, Menzes, N, Azam, S & Baydoun, A 2016, Positive Organizational Behaviour and Personal Strengths: Pillars for Increasing Employees’ Compliance with Information Security Policies. in 18th International Conference on Business, Economics, Management and Marketing. WASET, Bangkok, Thailand, 18th International Conference on Business, Economics, Management and Marketing, Bangkok, Thailand, 12/12/16.

Positive Organizational Behaviour and Personal Strengths : Pillars for Increasing Employees’ Compliance with Information Security Policies. / El-Den, Jamal; Menzes, Nelson; Azam, Sami; Baydoun, Ali.

18th International Conference on Business, Economics, Management and Marketing. Bangkok, Thailand : WASET, 2016.

Research output: Chapter in Book/Report/Conference proceedingConference Paper published in ProceedingsResearchpeer-review

TY - GEN

T1 - Positive Organizational Behaviour and Personal Strengths

T2 - Pillars for Increasing Employees’ Compliance with Information Security Policies

AU - El-Den, Jamal

AU - Menzes, Nelson

AU - Azam, Sami

AU - Baydoun, Ali

PY - 2016

Y1 - 2016

N2 - With the increase in the use of information systems, the threat of misuse and leaking of organization’s confidential data has also increased. Employees are the biggest asset of any organization but they are at the same time responsible for 90% of the information security breaches. To reduce employees’ information security violations, many theories such as General Deterrence Theory, Protection Motivation theory, Theory of Planned Behaviour and Rational Choice Theory have been introduced over the years. The majority of these theories and models focus on factors such as Job demands, Job Resources and effect of incentives to address employees’ Information security violations. However, Employees positive behaviour and individuals’ strengths have not been addressed in the literature to find their effects on employees’ security compliance. The authors developed a model which intends to increase the employees’ information security compliance within the organization based on their positive traits such as enthusiasm, happiness and Attitude and personal strengths such as past experiences, education and past knowledge. These traits and strengths should be imbedded in both the culture and the policies of the organization. Based on the model, the research explored the effects of employees’ Job demands, Job resources, Negative employee behaviour, personal strengths and positive traits on their intentions to comply with the information security policies of the organization. A questionnaire was developed and Data were collected from three organizations that participated in a confidential survey to test the developed hypothesis which were set based on the model. The research findings suggested that the employees’ Positive traits and personal strengths such as attitude, enthusiasm, happiness, know-how, past knowledge and expertise have considerable effects on their intentions to comply with the information security policies.

AB - With the increase in the use of information systems, the threat of misuse and leaking of organization’s confidential data has also increased. Employees are the biggest asset of any organization but they are at the same time responsible for 90% of the information security breaches. To reduce employees’ information security violations, many theories such as General Deterrence Theory, Protection Motivation theory, Theory of Planned Behaviour and Rational Choice Theory have been introduced over the years. The majority of these theories and models focus on factors such as Job demands, Job Resources and effect of incentives to address employees’ Information security violations. However, Employees positive behaviour and individuals’ strengths have not been addressed in the literature to find their effects on employees’ security compliance. The authors developed a model which intends to increase the employees’ information security compliance within the organization based on their positive traits such as enthusiasm, happiness and Attitude and personal strengths such as past experiences, education and past knowledge. These traits and strengths should be imbedded in both the culture and the policies of the organization. Based on the model, the research explored the effects of employees’ Job demands, Job resources, Negative employee behaviour, personal strengths and positive traits on their intentions to comply with the information security policies of the organization. A questionnaire was developed and Data were collected from three organizations that participated in a confidential survey to test the developed hypothesis which were set based on the model. The research findings suggested that the employees’ Positive traits and personal strengths such as attitude, enthusiasm, happiness, know-how, past knowledge and expertise have considerable effects on their intentions to comply with the information security policies.

UR - https://waset.org/conference/2016/12/bangkok/ICBEMM

UR - https://waset.org/conference/2016/12/bangkok/program

M3 - Conference Paper published in Proceedings

BT - 18th International Conference on Business, Economics, Management and Marketing

PB - WASET

CY - Bangkok, Thailand

ER -

El-Den J, Menzes N, Azam S, Baydoun A. Positive Organizational Behaviour and Personal Strengths: Pillars for Increasing Employees’ Compliance with Information Security Policies. In 18th International Conference on Business, Economics, Management and Marketing. Bangkok, Thailand: WASET. 2016