EnglishSvenskaNorsk
Change search
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf
Shaping security behaviour through discipline and agility: Implications for information security management
Luleå University of Technology, Department of Computer Science, Electrical and Space Engineering, Computer Science.ORCID iD: 0000-0001-6222-3216
Luleå University of Technology, Department of Engineering Sciences and Mathematics, Product and Production Development.ORCID iD: 0000-0002-2356-7830
2011 (English)In: Information Management & Computer Security, ISSN 0968-5227, E-ISSN 1758-5805, Vol. 19, no 4, p. 262-276Article in journal (Refereed) Published
Abstract [en]

Purpose: The purpose of this paper is to broaden the understanding about security behaviour by developing a security behavior typology based on the concepts of discipline and agility.

Design/methodology/approach: A case study was designed to analyze security behaviours in one public nursing centre. The inquiry was organized around the themes discipline and agility, culture,and security processes in order to get an in-depth understanding of the complex relationship between security management, referred to as discipline, and security in use, referred to as agility.

Findings: The paper shows that security behaviour can be shaped by discipline and agility and that both can exist collectively if organizations consider the constitutional and existential aspects of information security management.

Practical implications: This research makes a pivotal stand for the issue how security behaviours narrate a broad picture to enhance information security management. In particular, this will improve design of information security training and awareness programs.

Originality/value: This research is relevant to information security management in organizations, particularly as behavioural and cultural aspects are becoming increasingly significant for maintaining and also designing systemic information security management.
Place, publisher, year, edition, pages
2011. Vol. 19, no 4, p. 262-276
Keywords [en]
Information security, Organizational change, Strategic management, Psychology, Organizational culture, IT management
National Category
Information Systems, Social aspects Other Mechanical Engineering
Research subject
Computer and Systems Science; Computer Aided Design
Identifiers
URN: urn:nbn:se:ltu:diva-3467DOI: 10.1108/09685221111173076Scopus ID: 2-s2.0-81855218261Local ID: 14cdda67-5d5d-48ce-9e61-d5126b5f7f20OAI: oai:DiVA.org:ltu-3467DiVA, id: diva2:976325
Note

Validerad; 2011; 20110222 (dan_h)

Available from: 2016-09-29 Created: 2016-09-29 Last updated: 2022-08-23Bibliographically approved

Open Access in DiVA

No full text in DiVA

Other links

Publisher's full textScopus

Authority records

Harnesk, DanLindström, John

Search in DiVA

By author/editor
Harnesk, DanLindström, John
By organisation
Computer ScienceProduct and Production Development
In the same journal
Information Management & Computer Security
Information Systems, Social aspectsOther Mechanical Engineering

Search outside of DiVA

GoogleGoogle Scholar

doi
urn-nbn

Altmetric score

doi
urn-nbn
Total: 245 hits
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf
v. 2.47.0
|
Researcher: Register
|
Student: Register
|
Contact
|
WCAG