Investigating the Information Perception Value (IPV) Model in Maintaining the Information Security: Bruneian Perspective

Investigating the Information Perception Value (IPV) Model in Maintaining the Information Security: Bruneian Perspective

Sharul Tajuddin (Universiti Teknologi Brunei, Brunei), Afzaal H. Seyal (Universiti Teknologi Brunei, Brunei), Norfarrah Binti Muhamad Masdi (Universiti Teknologi Brunei, Brunei) and Nor Zainah H. Siau (Universiti Teknologi Brunei, Brunei)
DOI: 10.4018/978-1-5225-8933-4.ch024

Abstract

This pioneering study is conducted among 150 employees from various ministries of Brunei Darussalam regarding their perception in maintaining the information security and to validate the IPV model using linear regression data analysis techniques. The IPV model identifies the factors that affect the user's perception of information values and to further assess as how these perceptions of information value affect their behavior in information security environment. The results show that IPV model have significant predicting power the employees' behavior with more than half of the variance (59%) in information value is shared by these six contextual variables. However, four out of six antecedent variables monetary value, ministerial jurisdiction, spiritual, and social values are significantly predicting the information value. The study has significant impact both for the researchers and practitioners and will add value to the current repository of broad knowledge in information security behavior.
Chapter Preview
Top

Introduction

The first decade of 21st century has brought a radical shift in ICT paradigm with emergence of new technologies such as IoT, Big Data, Cloud Computing, Artificial Intelligence and Virtual Reality. These technologies have changed the corporate world by empowering the end user with better operative command and communication to have a competitive advantage among businesses. At the same time when end users are getting the benefits of the pervasive and ubiquitous computing, the CEOs and CIOs, especially of Fortune 500 companies have been given a more difficult task to protect their valuable assets-data not only from the outside intruders- but to continuously developing a policy to protect it from the inside loss.

Information is still one of the major assets in an organization or business. A loss in information can greatly produce negative impacts on an organization. In the case of Target’s data breach in 2013 there was a loss of 70 million customers financial data which caused customers to lose trust towards the company that resulted in reduced sales during that month of the event (Plachkinova & Maurer, 2018). It was identified that the point of entry of the attack was from the use of stolen credentials of third-party service providers. Therefore, it is important to protect information to prevent negative impacts on businesses.

It is widely known in information security that the human aspect is the weakest link in security defence (Bashorun, Worwui, & Parker, 2013) and every organization must address this issue within their domain and framework. Before managing the people factor in information security, security experts must know how the people behave towards the information. The IPV (Information Perception Value) model was developed to understand the human factor in the information security environment.

The IPV model is a model which identifies the factors that affect the user’s perception of information values and how these perceptions of information value affect their behaviour in the information security environment (Doherty & Tajuddin, 2018). This research project extends the research on the current IPV model because the model itself is newly developed and has not been tested in a larger population. The IPV model had been proven valid and true using qualitative research conducted in the public sector in Brunei Darussalam (Doherty & Tajuddin, 2018).

Complete Chapter List

Search this Book:
Reset