Kristina Gyllensten, Marianne Törner and Anders Pousette
The purpose of this paper is to investigate the relations among job resources, value conflicts, information security climate and information security behaviour in the nuclear…
Abstract
Purpose
The purpose of this paper is to investigate the relations among job resources, value conflicts, information security climate and information security behaviour in the nuclear industry.
Design/methodology/approach
Longitudinal questionnaire data on information security climate and psychosocial working conditions were collected from two organisations in Sweden (response rate 62% and 59%, respectively).
Findings
A high occurrence of value conflicts decreased the participative information security behaviour, while psychosocial job resources and high job demands had positive effects on such behaviour. High rule-compliant information security behaviour led to fewer perceived value conflicts. When job resources were high, high job demands had a positive effect on rule compliance. Information security climate had a strong and positive cross-sectional relationship with information security behaviour but no longitudinal influence on behaviour. This suggests that the time interval, one year between measurements, may have been too long and events between measurements may have masked the causal process.
Originality/value
As one of very few longitudinal studies of information security, this study illuminated causal relationships regarding information security behaviour that have not been possible to identify in previous cross-sectional research. This enables better understanding of psychosocial phenomena and processes of importance for information security. This study does not provide conclusive results but indicates new important directions for research.
Details
Keywords
Kristina Gyllensten, Anders Pousette and Marianne Törner
The purpose of this study is to investigate the influence of work-related value conflicts on information security in two organisations in nuclear power production and related…
Abstract
Purpose
The purpose of this study is to investigate the influence of work-related value conflicts on information security in two organisations in nuclear power production and related industry.
Design/methodology/approach
A mixed-methods design was applied. Individual interviews were conducted with 24 employees of two organisations in Sweden and questionnaire data on information security climate were collected from 667 employees (62%) in the same two organisations.
Findings
The qualitative part of the study identified five different types of value conflicts influencing information security behaviour. The quantitative part of the study found that value conflicts relating to information security had a negative relationship with rule-compliant behaviour. The opposite was found for participative security behaviour where there was a positive relationship with value conflicts. A high climate of information security was positively related to both rule-compliant and participative information security behaviour. It also moderated the effect of value conflicts on compliant information security behaviour.
Originality/value
This paper highlights organisational contextual conditions that influence employees’ motivation and ability to manage value conflicts relating to information security in a high-risk industry. It also enables a better understanding of the influence of the information security climate on information security in the presence of value conflicts in this type of industry.
Details
Keywords
Christian Gadolin, Maria Skyvell Nilsson, Axel Ros and Marianne Törner
The purpose of this paper is to inductively explore the context-specific preconditions for nurses' perceived organizational support (POS) in healthcare organizations.
Abstract
Purpose
The purpose of this paper is to inductively explore the context-specific preconditions for nurses' perceived organizational support (POS) in healthcare organizations.
Design/methodology/approach
A qualitative interview study was performed, based on the critical incident technique (CIT), with 24 registered nurses in different specialities of hospital care.
Findings
The nurses perceived three actors as essential for their POS: the first-line manager, the overarching organization and their college. The preconditions affecting the nurses’ perceptions of organizational support were supportive structuring and structures at work, as well as individual recognition and professional acknowledgement.
Originality/value
Previous studies of POS have mostly had a quantitative outset. In this paper, context-specific preconditions for nurses' POS are described in depth, enabled by the qualitative approach of the study. The findings may be used to guide healthcare organizations and managers aiming to foster nurses' POS, and thereby, benefit nurses' well-being and retention, as well as healthcare quality and efficiency.
Details
Keywords
Kristina Gyllensten and Marianne Torner
The aim of this study was to explore the organizational and social prerequisites for employees' participative and rule-compliant information security behaviour in Swedish nuclear…
Abstract
Purpose
The aim of this study was to explore the organizational and social prerequisites for employees' participative and rule-compliant information security behaviour in Swedish nuclear power production and its related industry. These industries are high-risk activities that must be meticulously secured. Protecting the information security in the related organizations is an essential aspect of this.
Design/methodology/approach
Individual in-depth interviews were conducted with 24 employees in two organizations within the nuclear power industry in Sweden.
Findings
We found that prerequisites for employees' participative and rule-compliant information security behaviour could be categorized into structural, social and individual aspects. Structural aspects included well-adapted rules, knowledge support and resources. Social aspects included a supportive organizational culture, collaboration and adequate resources, and individual aspects included individual responsibility.
Originality/value
The qualitative approach of the study provided comprehensive descriptions of the identified preconditions. The results may thus enable organizations to better promote conditions important for information security in a high-risk industry.