The Role of External Influences on Organizational Information Security Practices: An Institutional Perspective

H
HICSS
2006
Proceedings of the 39th Annual Hawaii International Conference on System Sciences (HICSS'06) Track 6
Abstract - The Role of External Influences on Organizational Information Security Practices: An Institutional Perspective

	This Article
	PDF RSS feed
	Share
	Email this Article to a friend
	Bibliographic References
	ASCII Text BibTex RefWorks Procite/RefMan
	Add to:
	Digg Furl Spurl Blink Simpy Google Del.icio.us Y!MyWeb
	Search
	Similar Articles Articles by Qing Hu Articles by Paul Hart Articles by Donna Cooke

Proceedings of the 39th Annual Hawaii International Conference on System Sciences (HICSS'06) Track 6

The Role of External Influences on Organizational Information Security Practices: An Institutional Perspective (PDF)

Kauai, Hawaii

January 04-January 07

ISBN: 0-7695-2507-5

	ASCII Text	x
	Qing Hu, Paul Hart, Donna Cooke, "The Role of External Influences on Organizational Information Security Practices: An Institutional Perspective," Hawaii International Conference on System Sciences, vol. 6, pp. 127a, Proceedings of the 39th Annual Hawaii International Conference on System Sciences (HICSS'06) Track 6, 2006.

	BibTex	x
	@article{ 10.1109/HICSS.2006.481, author = {Qing Hu and Paul Hart and Donna Cooke}, title = {The Role of External Influences on Organizational Information Security Practices: An Institutional Perspective}, journal ={Hawaii International Conference on System Sciences}, volume = {6}, year = {2006}, issn = {1530-1605}, pages = {127a}, doi = {http://doi.ieeecomputersociety.org/10.1109/HICSS.2006.481}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, }

	RefWorks Procite/RefMan/Endnote	x
	TY - CONF JO - Hawaii International Conference on System Sciences TI - The Role of External Influences on Organizational Information Security Practices: An Institutional Perspective SN - 1530-1605 SP EP A1 - Qing Hu, A1 - Paul Hart, A1 - Donna Cooke, PY - 2006 KW - Institutional Theory KW - Information Security KW - Sarbanes-Oxley Act KW - Organizational Isomorphism. VL - 6 JA - Hawaii International Conference on System Sciences ER -

Qing Hu, Florida Atlantic University

Paul Hart, Florida Atlantic University

Donna Cooke, Florida Atlantic University

DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/HICSS.2006.481

This paper describes the initial findings of a case study intended to identify important organizational catalysts and impediments to implementing and using security technologies and security policies. The study focuses on how institutional forces shaped and motivated managers and employees at different levels in different ways. We found that low priority of security technology investments and internal policy development to top management is likely the main reason for organizational inertia that leads to insecurity. Two types of institutional forces seem to be the most effective mechanisms for breaking the inertia: coercive forces exerted by regulatory agencies and the normative forces exerted through the influences of professionalism and professional networks. The case shows that with respect to security technologies and policies, regulatory forces, such as the Sarbanes-Oxley Act, are much more powerful drivers for change within the organization as compared to normative influence which disproportionately affects IT personnel rather than top level executives.

Index Terms:

Institutional Theory, Information Security, Sarbanes-Oxley Act, Organizational Isomorphism.

Citation:

Qing Hu, Paul Hart, Donna Cooke, "The Role of External Influences on Organizational Information Security Practices: An Institutional Perspective," hicss, vol. 6, pp.127a, Proceedings of the 39th Annual Hawaii International Conference on System Sciences (HICSS'06) Track 6, 2006

Peer Review Notice | Give Us Feedback

Usage of this product signifies your acceptance of the Terms of Use.