The Influence of Security Control Management and Social Factors in Deterring Security Misbehaviour
H. A. Hamid1, M. M. Yusof2, N. R. S. Mohd Dali3
1H. A. Hamid, Faculty of Science and Technology, Universiti Sains Islam Malaysia, Nilai, Negeri Sembilan, Malaysia.
2M. M. Yusof, Faculty of Information and Communication Technology, Niversiti Teknikal Malaysia Melaka, Hang Tuah Jaya, Durian Tunggal, Melaka, Malaysia.
3Mohd Dali, Islamic Finance and Wealth Management, Institute Faculty of Economics and Muamalat, Universiti Sains Islam Malaysia, Nilai, Negeri Sembilan, Malaysia.
Manuscript received on 25 May 2019 | Revised Manuscript received on 12 June 2019 | Manuscript Published on 26 June 2019 | PP: 144-150 | Volume-8 Issue-1S5 June 2019 | Retrieval Number: A00270681S519/2019©BEIESP
Open Access | Editorial and Publishing Policies | Cite | Mendeley | Indexing and Abstracting
© The Authors. Blue Eyes Intelligence Engineering and Sciences Publication (BEIESP). This is an open access article under the CC-BY-NC-ND license (http://creativecommons.org/licenses/by-nc-nd/4.0/)
Abstract: Complying with the security rules and standard is important to safeguard valuable information in the organisation. Failure to prevent security breaches costs the organisation huge losses and bad reputation. Technical solutions are abundant but nonetheless still unsuccessful to deter information security incidents. The root cause of incompliance is humans as they are the weakest link of security chain. Based on the integration of social cognitive theory and extended deterrence theory, this paper examines the information security control management particularly on information security awareness, training and education, risk analysis and management, policies and procedures as well as physical security monitoring, and cognitive factors which give impact towards the employees’ information security compliant behaviour in the organisation. Utilising purposive sampling, a survey was conducted to employees of public and private sectors in Malaysia who are identified as Software- as-a- Service cloud users. Data collected was analysed using PLS-SEM. Result shows that information security control management and social factors have significant impact in deterring information security misbehaviour in the context of cloud users.
Keywords: Security, Compliance, Behaviour, Model.
Scope of the Article: Security Technology and Information Assurance