Work ethic and information security behavior
Information and Computer Security
ISSN: 2056-4961
Article publication date: 7 December 2021
Issue publication date: 27 May 2022
Abstract
Purpose
Information security is a growing issue that impacts organizations in virtually all industries, and data breaches impact millions of customers and cost organizations millions of dollars. Within the past several years alone, huge data breaches have been experienced by organizations such as Marriot, Equifax, eBay, JP Morgan Chase, Home Depot, Target and Yahoo, the latter of which impacted three billion users. This study aims to examine the utilization of pre-employment screening to identify potential hires that may require enhanced information security training to avoid such costs.
Design/methodology/approach
The authors hypothesize that an individual’s work ethic predicts a person’s information security behavior. The authors test this hypothesis using structural equation modeling with bootstrapping techniques.
Findings
Data analysis suggests that certain dimensions of work ethic do indeed predict information security posture, and thus, simple pre-employment screening techniques (i.e. questionnaires) can aid in identifying potential security threats.
Practical implications
The findings provide a tool for identifying problematic employee security posture prior to hiring, which may be useful in identifying training needs for new hires.
Originality/value
The findings provide a tool for identifying problematic employee security posture prior to hiring, which may be useful in identifying training needs for new hires.
Keywords
Citation
Ramakrishnan, T., Hite, D.M., Schuessler, J.H. and Prybutok, V. (2022), "Work ethic and information security behavior", Information and Computer Security, Vol. 30 No. 3, pp. 364-381. https://doi.org/10.1108/ICS-02-2021-0017
Publisher
:Emerald Publishing Limited
Copyright © 2021, Emerald Publishing Limited