Show simple item record

dc.contributor.authorSafa, Nader Sohrabi
dc.contributor.authorMaple, Carsten
dc.contributor.authorFurnell, Steve
dc.contributor.authorAzad, Muhammad Ajmal
dc.contributor.authorPerera, Charith
dc.contributor.authorDabbagh, Mohammad
dc.contributor.authorSookhak, Mehdi
dc.date.accessioned2021-06-18T10:01:17Z
dc.date.available2021-06-18T10:01:17Z
dc.date.issued2019-03-12
dc.identifier.citationSohrabi Safa, N., Maple, C., Furnell, S., Azad, M.A., Perera, C., Dabbagh, M. and Sookhak, M. (2019) Deterrence and prevention-based model to mitigate information security insider threats in organisations. Future Generation Computer Systems 97 , pp. 587-597. 10.1016/j.future.2019.03.024en
dc.identifier.issn0167-739Xen
dc.identifier.doi10.1016/j.future.2019.03.024en
dc.identifier.urihttp://hdl.handle.net/2436/624125
dc.descriptionThis is an accepted manuscript of an article published by Elsevier in Future Generation Computer Systems, available online: https://doi.org/10.1016/j.future.2019.03.024 The accepted version of the publication may differ from the final published version.en
dc.description.abstractPrevious studies show that information security breaches and privacy violations are important issues for organisations and people. It is acknowledged that decreasing the risk in this domain requires consideration of the technological aspects of information security alongside human aspects. Employees intentionally or unintentionally account for a significant portion of the threats to information assets in organisations. This research presents a novel conceptual framework to mitigate the risk of insiders using deterrence and prevention approaches. Deterrence factors discourage employees from engaging in information security misbehaviour in organisations, and situational crime prevention factors encourage them to prevent information security misconduct. Our findings show that perceived sanctions certainty and severity significantly influence individuals’ attitudes and deter them from information security misconduct. In addition, the output revealed that increasing the effort, risk and reducing the reward (benefits of crime) influence the employees’ attitudes towards prevent information security misbehaviour. However, removing excuses and reducing provocations do not significantly influence individuals’ attitudes towards prevent information security misconduct. Finally, the output of the data analysis also showed that subjective norms, perceived behavioural control and attitude influence individuals’ intentions, and, ultimately, their behaviour towards avoiding information security misbehaviour.en
dc.formatapplication/pdfen
dc.languageen
dc.language.isoenen
dc.publisherElsevieren
dc.relation.urlhttps://www.sciencedirect.com/science/article/abs/pii/S0167739X18331285?via%3Dihuben
dc.subjectinformation securityen
dc.subjectorganisationen
dc.subjectinsideren
dc.subjectdeterrenceen
dc.subjectmotivationen
dc.subjectrisken
dc.subjectemployeeen
dc.titleDeterrence and prevention-based model to mitigate information security insider threats in organisationsen
dc.typeJournal articleen
dc.identifier.journalFuture Generation Computer Systemsen
dc.date.updated2021-06-15T06:59:38Z
dc.date.accepted2019-03-08
rioxxterms.funderCoventry Universityen
rioxxterms.identifier.projectUOW18062021NSSen
rioxxterms.versionAMen
rioxxterms.licenseref.urihttps://creativecommons.org/licenses/by-nc-nd/4.0/en
rioxxterms.licenseref.startdate2021-06-18en
dc.source.volume97
dc.source.beginpage587
dc.source.endpage597
dc.description.versionPublished version
refterms.dateFCD2021-06-18T10:00:37Z
refterms.versionFCDAM
refterms.dateFOA2021-06-18T10:01:18Z


Files in this item

Thumbnail
Name:
Publisher version
Thumbnail
Name:
Sohrabi Safa_et_al_Deterrence_ ...
Size:
359.3Kb
Format:
PDF

This item appears in the following Collection(s)

Show simple item record

https://creativecommons.org/licenses/by-nc-nd/4.0/
Except where otherwise noted, this item's license is described as https://creativecommons.org/licenses/by-nc-nd/4.0/