DOI QR코드

DOI QR Code

A Study on Influence of Information Security Stress and Behavioral Intention for Characteristic factors of Information Security Policy Perceived by Employee

통제수용자에 의해 인지된 정보보안정책 특성요인이 보안스트레스와 보안준수의도에 미치는 영향에 대한 연구

  • 임광수 (고려대학교 금융보안학과 금융보안정책전공) ;
  • 권헌영 (고려대학교 정보보호대학원)
  • Received : 2016.10.05
  • Accepted : 2016.12.09
  • Published : 2016.12.31

Abstract

Company strengthen various information security policy and activity in order to protect important information assets that the company has been dealing with and prevents information security accidents such as personal information spill. However, some study said these policy and activity increase employee's information security stress and still information security accidents by employees have happened so far. Therefore, this study will review preceding theories and studies used in many various fields including Information Security areas needed to explain human's behavioral intention and determinants and summarize characteristic factors that have influence on control of human's behavioral intention in the results of the above theories and studies. Secondly, this study will implement exploratory analysis on characteristic factors perceived by employees that has been stemmed from various company's information security policy and activity in order to increase employee/'s information security compliance intention under the its surrounding security circumstance. Thirdly, this study will fulfil multiple-regression analysis in order to identify cause-effect relationship between employee's perceived information security stress and employee's perceived characteristic factor. Finally, this study will explain casual relationship with same analysis methods between information security stress and information security compliance intention based on results of the survey conducted on the financial firm's employees with same analysis methods.

기업들은 중요한 지적 자산을 보호하고, 개인정보 유출과 같은 보안 사고를 예방을 위하여, 사내 보안 활동을 강화 하고 있다. 하지만, 이로 인한 구성원들의 보안스트레스는 점점 증가하고 있으며, 내부자에 의한 보안사고도 지속적으로 발생하고 있는 현실이다. 그리고 기업 내 다양한 정보보안 상황과 활동에 따라 통제수용자가 실제 인지하는 보안 스트레스 강도에도 차이가 있을 것으로 예상된다. 따라서 본 연구에서는 다양한 분야에서 인간의 행동결정을 설명하는데 많이 이용되고 있는 합리적 행동이론, 계획된 행동이론, 일반 억제이론 등을 정보보안 분야에 접목한 기존 연구의 이론적 고찰을 통해, 기업에서 시행되고 있는 다양한 보안정책 및 보안활동으로부터 인지된 조직 구성원의 보안정책 특성요인을 탐색적 연구를 통해 분석하고, 이러한 특성요인을 독립변수로 하여, 이들 변수들과 조직 구성원이 체감하는 보안스트레스와의 인과관계를 다중 회귀분석을 통해 설명하고, 궁극적으로는 통제수용자의 인지된 보안스트레스가 통제수용자의 보안준수행동의도에 미치는 영향에 대한 인과관계를 설명하고자 금융회사 조직 구성원을 대상으로 실증분석을 하고자 한다.

Keywords

References

  1. Jung, Jae Won (2015). A Study for the Effect on Members' Compliance Intention for Information Security of Information Security Activity of Organization : From the Perspective of Health Belief Model pp.8-9.
  2. Kim, Su Hyun (2013), A Research on Information Security Policy Compliance Activity's Effect on Stress: Centered on Compliance Activity Type pp. 2
  3. Seoung-Ju Kim, the security system, and practical measures required. Security measures that are in reality to admit to that people are not perfect, The Digital Times, the April 12, 2016
  4. Myung-Seong Yim (2013), The effect of Characteristics of Information Security Policy on Security Policy Compliance Intent. The Korea Society of Digital Policy & Management Vol.9, No. 1
  5. http://www.ddaily.co.kr/news/article.html?no=75678, 2011.03.17, digital daily Internet news article
  6. http://www.zdnet.co.kr/news/news_view.asp?artice_id=20141127123339&type=det&re=,zdnet korea article, KISA (SNC 2015) Jung, Kyoung-Ho, (2014.11.27)
  7. Shin, So-Young․Kim, Chang-Ho (2015) A Study on the Influence of Industrial Security Policies and Input for Compliance on the Industrial Security Supervisors' Compliance Motivations towards Security Policies, Journal of the Korean Society of Private Security Vol. 14, Issue 14 No.4
  8. Sang-Hoon Kim (2016) An Empirical Study on Influencing Factors of Using Information Security Technology. Journal of Society for e-Business Studies 20(4). 151-175 https://doi.org/10.7838/JSEBS.2015.20.4.151
  9. Jeong-Ha Lee (2015). A Study on the Factors for Violation of Information Security Policy in Financial Companies : Moderating Effects of Perceived Customer Information Sensitivity. Journal of Information Technology Applications & Management, 22(4), 225-251. https://doi.org/10.21219/JITAM.2015.22.4.225
  10. Jung,WooJin (2012), The study on the behavioral attitude of employees toward the customer information security in financial firms. pp.27
  11. Haejung Yun, Guiyoung Choi, Choong C. Lee(2011) The Influence of Mobile Office Systems on Users' Job Stress and Work Overload, Journal of Management Information Systems, Vol.20, Issue. 20, No.2, June. 2011, pp.155-176
  12. Kim, Moon-Tae (2013)A Study of Influence Factors that effect on Consumer Fatigue in the Adoption of Convergence Products. Management and Information Systems Review, Vol. 32, No.2
  13. Sung Min Ryu (2013), Study on information security stress in Public Enterprise
  14. Hae-Sool Yang(2007) A Study on the Influential Relationship of Job Stress in R&D Personnel on their Organizational Effectiveness, Journal of the Korea Academia-Industrial cooperation Society, Vol. 8, No. 6, pp. 1695-1705.