Jack Shih-Chieh Hsu, Yu Wen Hung, Pei-Jung Hsieh, Chao-Min Chiu
{"title":"Examining formation and alleviation of information security fatigue by using job demands–resources theory","authors":"Jack Shih-Chieh Hsu, Yu Wen Hung, Pei-Jung Hsieh, Chao-Min Chiu","doi":"10.1111/isj.12524","DOIUrl":null,"url":null,"abstract":"<p>The implementation and reinforcement of information security policies (ISPs) can lead to information security fatigue (hereafter security fatigue), which can drive employees to engage in unwanted behaviours. Thus, managers must reduce the likelihood of security fatigue. Therefore, in the present study, we employed job demands–resources theory and hypothesized that security-related demands would result in security fatigue. Furthermore, we identified resources that may alleviate such fatigue. The research model was tested with data collected from 386 employees of organisations with ISPs. The findings indicate that job and personal resources can reduce the occurrence of security fatigue and engagement in opportunistic security behaviours by enhancing engagement. In addition, the effect of security fatigue on opportunistic security behaviours can be suppressed through the implementation of behavioural evaluations. Our study contributes to the formulation of methods for relieving security fatigue and ameliorating its negative effects.</p>","PeriodicalId":48049,"journal":{"name":"Information Systems Journal","volume":"34 6","pages":"2132-2172"},"PeriodicalIF":6.5000,"publicationDate":"2024-04-17","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"Information Systems Journal","FirstCategoryId":"91","ListUrlMain":"https://onlinelibrary.wiley.com/doi/10.1111/isj.12524","RegionNum":2,"RegionCategory":"管理学","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"Q1","JCRName":"INFORMATION SCIENCE & LIBRARY SCIENCE","Score":null,"Total":0}
引用次数: 0
Abstract
The implementation and reinforcement of information security policies (ISPs) can lead to information security fatigue (hereafter security fatigue), which can drive employees to engage in unwanted behaviours. Thus, managers must reduce the likelihood of security fatigue. Therefore, in the present study, we employed job demands–resources theory and hypothesized that security-related demands would result in security fatigue. Furthermore, we identified resources that may alleviate such fatigue. The research model was tested with data collected from 386 employees of organisations with ISPs. The findings indicate that job and personal resources can reduce the occurrence of security fatigue and engagement in opportunistic security behaviours by enhancing engagement. In addition, the effect of security fatigue on opportunistic security behaviours can be suppressed through the implementation of behavioural evaluations. Our study contributes to the formulation of methods for relieving security fatigue and ameliorating its negative effects.
期刊介绍:
The Information Systems Journal (ISJ) is an international journal promoting the study of, and interest in, information systems. Articles are welcome on research, practice, experience, current issues and debates. The ISJ encourages submissions that reflect the wide and interdisciplinary nature of the subject and articles that integrate technological disciplines with social, contextual and management issues, based on research using appropriate research methods.The ISJ has particularly built its reputation by publishing qualitative research and it continues to welcome such papers. Quantitative research papers are also welcome but they need to emphasise the context of the research and the theoretical and practical implications of their findings.The ISJ does not publish purely technical papers.