• Title/Summary/Keyword: policy compliance

Search Result 297, Processing Time 0.023 seconds

Influencing Factors for Compliance Intention of Information Security Policy (정보보안 정책 준수 의도에 대한 영향요인)

  • Kim, Sang-Hoon;Park, Sun-Young
    • The Journal of Society for e-Business Studies
    • /
    • v.16 no.4
    • /
    • pp.33-51
    • /
    • 2011
  • This research derived the influencing factors for employees' compliance with the information security policy in organizations on the basis of Neutralization Theory, Theory of Planned Behavior and Protection Motivation Theory. To empirically analyze the research model and the hypotheses, data were collected by conducting web survey, 194 of 207 questionnaires were available. The test of causal model was conducted by PLS. Reliability, validity and model fit were found to be statistically significant. the results of hypotheses tests showed that seven ones of eight hypotheses could be accepted. The theoretical implications of this study are as follows : 1) this study is expected to play a role of baseline for future research about employee compliance with the information security policy, 2) this study attempted interdisciplinary approach through combining psychology and information system security research, and 3) it suggested concrete operational definitions of influencing factors for information security policy compliance through comprehensive theoretical review. Also, this study has some practical implications. First, it can provide the guideline to support the successful execution of the strategic establishment for implement of information system security policies in organizations. Second, it is proved that the need for conducting education and training program suppressing employees. neutralization psychology to violate information security policy should be emphasized in the organizations.

The Effect of Organizational Information Security Environment on the Compliance Intention of Employee (조직의 정보보안 환경이 조직구성원의 보안 준수의도에 미치는 영향)

  • Hwang, Inho;Kim, Daejin
    • The Journal of Information Systems
    • /
    • v.25 no.2
    • /
    • pp.51-77
    • /
    • 2016
  • Purpose Organizations invest significant portions of their budgets in fortifying information security. Nevertheless, the security threats by employees are still at large. We discuss methods to reduce security threats that are posed by employees in organization. This study finds antecedent factors that increases or decreases employee's compliance intention. Also, the study suggests organizations' security environmental factors which influences the antecedent factors of compliance intention. Design/methodology/approach The structural equation model is then applied in order to verify this research model and hypothesis. Data were collected on 415 employees working in organizations with an implemented information security policy in South Korea. We analyzed the fitness and validity of the research model via confirmatory factor analysis in order to verify the research hypothesis, then we analyzed structural model, and derived the result. Findings The result shows that organizational commitment and peer behavior increase security compliance intention of employees, while security system anxiety decreases compliance intention. And, organization's physical security system and security communication both have influence on antecedent factors for information security compliance of employees. Our findings help organizations to establish information security strategies that enhance employee security compliance intention.

An Investigation into the Role of Technostress in Information Security Context (기술스트레스가 정보보안에 미치는 영향에 관한 연구)

  • Park, Chul-Ju;Yim, Myung-Seong
    • Journal of Digital Convergence
    • /
    • v.10 no.5
    • /
    • pp.37-51
    • /
    • 2012
  • The purpose of this study is to approach information security from a more comprehensive perspective. Particularly, information countermeasures includes a technological tool for end users, thereby increasing the end users' technological stresses. Based on the technostress framework, we investigate a effect of security awareness training on technostress, and also examine a effect of technostress on the persistent security compliance. Results showed that security awareness training influenced on techno-overload and techno-uncertainty. We also found that techno-overload and techno-uncertainty have a significant effect on the persistent security compliance. Conclusion and implications are discussed.

Development of Compliance Collaboration Index for Trade Supply Chain (무역공급망 법규준수 협력지수 개발)

  • Kim, Hee-Soo;Ma, Sun-Duck
    • Journal of Korean Society for Quality Management
    • /
    • v.38 no.1
    • /
    • pp.34-41
    • /
    • 2010
  • This paper proposes the compliance collaboration index(CCI) which can be useful to measure the level of supply chain's compliance collaboration quantitatively. It can be shown that the proposed index is quite flexible when applied in real situations at the request of the index user. For instance, even if only one company of many companies in trade supply chain to be tested through the AEO certification test is not satisfied the required specification. the index is designed in such a way that the score can't be higher than a certain predetermined value. The proposed CCI can be used as the guidance for a trade company's collaboration process control strategy to increase the efficiency of compliance improvement activity. In this paper, we use the Analysis Hierarchy Process(AHP) which is one of the methods recommended by ISO/ICE as a measurement of weight to be assigned to the relevant parameters considered in the CCI.

Study on Pediatric Nurses' Attitudes and Compliance with Hospital Infection Standard Precautions (아동병동 간호사의 병원감염 표준주의에 대한 인지도와 이행도)

  • Shin, Hye-Yeun;Kim, Kyung-Hee;Kim, Ki-Sook
    • Child Health Nursing Research
    • /
    • v.17 no.4
    • /
    • pp.238-246
    • /
    • 2011
  • Purpose: The purpose of this study was to identify pediatric nurses' attitudes to, and compliance with, standard precautions in the prevention of hospital infections by enhancing their practice of standard precautions. Methods: The participants were 206 nurses who worked in pediatric nursing departments of a general medical institution in Seoul. The questionnaire was a modification of Kim (2008) and consisted of 18 questions about hand washing, personal protective equipment, sharps, linen and patient care equipment. Collected data were processed using SPSS 15.0 WIN. Results: Mean scores for attitudes to standard precautions and for compliance with standard precautions were 4.43 (${\pm}0.83$) and 4.22 (${\pm}0.44$) respectively. This difference was statistically significant (t=3.368, p=.001). The nurses' compliance with standard precautions differed significantly according to the general characteristics of age (F=8.705, p<.001), total clinical experience (F=9.426, p<.001), current department experience (F=6.555, p<.001), and education experience (t=0.616, p<.043). There was a positive correlation between attitudes to, and compliance with, standard precautions (r=.156, p=.025). Conclusion: The results of this study indicate that educational programs and policy on infection control and standard precautions for pediatric nurses are needed. Also these results should contribute to baseline data for establishing appropriate clinical policy on infection control.

The Influence on the Information Security Stressor on Information Security Compliance Intention : Focusing on the Moderation of Authentic Leadership (정보보안 스트레서가 정보보안 준수 의도에 미치는 영향: 진성 리더십의 조절 효과 중심)

  • Hwang, In-Ho
    • The Journal of the Korea institute of electronic communication sciences
    • /
    • v.16 no.6
    • /
    • pp.1101-1112
    • /
    • 2021
  • Organizations continue to increase investment in information security(IS) policies and technologies to prevent external intrusion and internal exposure to information assets. However, as the organization's regulations and behavioral requirements for strict IS policy increase, employees may induce negative behaviors through IS-related stress. The purpose of this study is to suggest the effects of challenge and hindrance stressors on IS compliance intentions and to confirm how authentic leadership moderates the positive and negative effects of stressors. We reflected employees of the organization who are applying IS policy to their work as a study target and applied a survey to obtain a sample for research hypothesis verification. As a result of analysis through structural equation modeling, challenge and hindrance stressors affected IS compliance intentions, and authentic leadership moderated the effects of stressors on compliance intention. Our research helps to establish insiders support strategies to achieve internal IS goals, because the results suggested stressor conditions and leaders' behavioral directions that influence employees IS compliance behavior.

A Study on Waste Discharge Characteristics and Disposal Policy of Jeju (제주지역 폐기물 배출처리 특성과 정책에 대한 소고)

  • Hwang, Seok-Joon;Hwang, Uk;Kim, Hyuncheol
    • Journal of Korea Society of Waste Management
    • /
    • v.35 no.7
    • /
    • pp.627-639
    • /
    • 2018
  • Waste management in Jeju Province, Korea, has recently emerged as an urgent problem. The increasing waste discharge requires more landfills but, since it is an island, the available land is restricted. Accordingly, an efficient waste management urgently requires environmentally sustainable policies. In this article, the waste discharge characteristics (such as the amount of waste, its composition, etc.) of Jeju Province have been compared with those in the rest of Korea. The current industrial waste management of two cities on the Island, Jeju City and Seogwipo City, has been also analyzed to suggest policies for an efficient management. The local government's endeavor to enhance environmental awareness of the community has been known to reduce the private cost of policy compliance, and have individuals recognize the results of their policy compliance. Policies to achieve the above are then proposed.

Meta-analysis of Information Security Policy Compliance Based on Theory of Planned Behavior (정보보안 정책준수에 대한 메타분석: 계획된 행동이론을 중심으로)

  • Kim, Jongki;Mou, Jian
    • Journal of Digital Convergence
    • /
    • v.18 no.11
    • /
    • pp.169-176
    • /
    • 2020
  • With widespread use of information technologies the importance of information security has been heightened. Security policies which deal with fundamental direction of information security are critical elements of information security management. Numerous studies have been conducted on users' intention to comply security policies. They were based on various theoretical foundations and the theory of planned behavior(TPB) was the most frequently used. This research employed one of the quantitatively synthesizing meta-analytic techniques called Two-Stage Structural Equation Modeling to investigate factors influencing information security policy compliance behavior based on TPB. Analysis results indicated that all three factors of TPB were significantly influencing the behavioral intention. Moreover, the overall fit indices of structural model exhibited satisfactory level.

Nurses' Compliance with Safety Guidelines for the Use of Antineoplastic Agents, Observable Symptoms, and Stress from Occupational Exposure (간호사의 항암제 안전관리지침 수행도, 노출로 인한 자각증상 및 스트레스의 관계)

  • Park, Seon-Ja;Kim, Hyun-Ju
    • Journal of Korean Academy of Fundamentals of Nursing
    • /
    • v.25 no.4
    • /
    • pp.293-300
    • /
    • 2018
  • Purpose: This study was done to identify the relationship between nurses' compliance with safety guidelines for the use of antineoplastic agents, observable symptoms, and stress from occupational exposure. Methods: The participants were 172 nurses from six general hospitals in a metropolitan area. They had administered antineoplastic agents at least three months prior to the study. Data were collected using self-report questionnaires, and then analyzed using SPSS/WIN 23.0 for descriptive statistics, t-test, one-way ANOVA, $Scheff\acute{e}$ method, and Pearson correlation coefficient. Results: The average score on the guideline for safety compliance was 87.75 points out of a total of 100. The average score for observable symptoms of exposure to antineoplastic agents was 30.12 (28~56) points, and that for mean stress was 33.52 (15~60) points. Observable symptoms and stress from occupational exposure showed a statistically significant positive correlation (r=0.34, p<.001). Conclusion: To increase the degree of compliance with safety guidelines for antineoplastic agents, hospitals should lower the chance of exposure to antineoplastic agents, as well as minimize the observable symptoms and stress from occupational exposure. Periodic education and policy support are needed to improve compliance with safety guidelines for antineoplastic agent use.

Effect of Security Culture on Security Compliance and Knowledge of Employees (조직의 정보보안 문화 형성이 조직 구성원의 보안 지식 및 준수의도에 미치는 영향 연구)

  • Hwang, Inho;Kim, Daejin;Kim, Taeha;Kim, Jinsoo
    • Information Systems Review
    • /
    • v.18 no.1
    • /
    • pp.1-23
    • /
    • 2016
  • This study proposes an alternative to minimize insider-caused security threats that are relatively difficult to control and cause high uncertainty in information security management. Therefore, we investigate the relationship between organizational effort and the security understanding of employees to eventually enhance security compliance intention among employees. We develop a research model and formulate hypotheses on the basis of past findings. Accomplished questionnaires are collected from 526 employees working in organizations where information security policy is being implemented. In addition, we prove the hypotheses using a structural model. After reviewing the structural model, the security knowledge of employees and information security culture are determined to positively influence the security compliance intention of employees. Moreover, top management support, security policy, security visibility, and security education programs are proven to be antecedent factors in establishing a security culture in organizations. The findings of this study could guide organizations in formulating information security strategies to enhance the security compliance intention of employees.