An Information Security Culture Model Validated with Structural Equation Modelling

Da Veiga, Adele; Martins, Nico

UnisaIR Home
→
College of Science, Engineering and Technology
→
School of Computing
→
Research Outputs (School of Computing)
→
View Item

dc.contributor.author	Da Veiga, Adele
dc.contributor.author	Martins, Nico
dc.date.accessioned	2015-09-14T07:35:43Z
dc.date.available	2015-09-14T07:35:43Z
dc.date.issued	2015-07-01
dc.identifier.isbn	978-1-84102-388-5
dc.identifier.uri	http://hdl.handle.net/10500/19061
dc.description.abstract	Information security culture must be considered as part of the information security programme to direct employee behaviour. Such a culture can contribute to the protection of information and minimise the risk that employee behaviour poses. This paper proposes a theoretical model, i.e. an information security culture model (ISCM) with four mechanisms (i.e. management, policies, awareness and compliance) that potentially influence information security culture positively. ISCM is based on the information security culture assessment (ISCA) questionnaire dimensions that are correlated with the theoretical mechanisms (dimensions). The theoretical model is validated through structural equation modelling (SEM) using empirical data derived from an ISCA assessment. This research produces a sound theoretical information security culture model, which is supported by the empirical study and further confirms the research hypothesis that management, policies, awareness and complianc	en
dc.language.iso	en	en
dc.publisher	University of Plymouth	en
dc.subject	Information security culture	en
dc.subject	theoretical model	en
dc.subject	empirical model	en
dc.subject	policies	en
dc.subject	awareness	en
dc.subject	management	en
dc.subject	compliance	en
dc.title	An Information Security Culture Model Validated with Structural Equation Modelling	en
dc.type	Article	en
dc.description.department	School of Computing	en