Reference Hub

This research has been cited in:

Article
Abductive innovations in information security policy development: an ethnographic studyEuropean Journal of Information Systems10.1080/0960085X.2019.1624141
Article
Information systems continuity process: Conceptual foundations for the study of the “social”Computers & Security10.1016/j.cose.2016.11.001
Article
Evaluating compliance for organizational information security and business continuity: three strata of ventriloqual agencyInformation Technology & People10.1108/ITP-03-2022-0156
Chapter
The Model of Influence in Cybersecurity with FramesDiversity, Divergence, Dialogue10.1007/978-3-030-71305-8_18

Influences of Frame Incongruence on Information Security Policy Outcomes: An Interpretive Case Study

Anna Elina Laaksonen, Marko Niemimaa, Dan Harnesk

Source Title: International Journal of Social and Organizational Dynamics in IT (IJSODIT)3(3)

ISSN: 2155-6334|EISSN: 2155-6342|EISBN13: 9781466634015|DOI: 10.4018/ijsodit.2013070103

Cite Article Cite Article

MLA

Laaksonen, Anna Elina, et al. "Influences of Frame Incongruence on Information Security Policy Outcomes: An Interpretive Case Study." IJSODIT vol.3, no.3 2013: pp.33-50. http://doi.org/10.4018/ijsodit.2013070103

APA

Laaksonen, A. E., Niemimaa, M., & Harnesk, D. (2013). Influences of Frame Incongruence on Information Security Policy Outcomes: An Interpretive Case Study. International Journal of Social and Organizational Dynamics in IT (IJSODIT), 3(3), 33-50. http://doi.org/10.4018/ijsodit.2013070103

Chicago

Laaksonen, Anna Elina, Marko Niemimaa, and Dan Harnesk. "Influences of Frame Incongruence on Information Security Policy Outcomes: An Interpretive Case Study," International Journal of Social and Organizational Dynamics in IT (IJSODIT) 3, no.3: 33-50. http://doi.org/10.4018/ijsodit.2013070103

Export Reference

Favorite Full-Issue Download

View Full Text HTML

View Full Text PDF

Abstract

Despite the significant resources organizations devote to information security policies, the policies rarely produce intended outcome. Prior research has sought to explain motivations for non-compliance and suggested approaches for motivating employees for compliance using theories largely derived from psychology. However, the socio-cognitive structures that shape employees' perceptions of the policies and how they influence policy outcomes have received only modest attention. In this study, the authors draw on the socio-cognitive theory of frames and on literature on information security policies in order to suggest a theoretical and analytical concept of Information Security Policy Frames of Reference (ISPFOR). The concept is applied as a sensitizing device, in order to systematically analyze and interpret how the perceptions of policies are shaped by the frames and how they influence policy outcomes. The authors apply the sensitizing device in an interpretive case study conducted at a large multinational internet service provider. The authors’ findings suggest the frames shape the perceptions and can provide a socio-cognitive explanation for unanticipated policy outcomes. Implications for research and practice are discussed.

You do not own this content. Please login to recommend this title to your institution's librarian or purchase it from the IGI Global bookstore.

Username or email: *

Password: *

Forgot individual login password?

Create individual account

Influences of Frame Incongruence on Information Security Policy Outcomes: An Interpretive Case Study

MLA

APA

Chicago

Export Reference

Abstract

Request Access