INFORMATION SECURITY AWARENESS PROGRAMS IN CONGOLESE ORGANIZATIONS: CULTURAL INFLUENCE AND EFFECTIVE USE.

Motivated by a need to understand the underlying drivers of employee effective use behaviors as it relates to security awareness in Congolese organizations, this study examined extrinsic motivation, intrinsic motivation, attitude toward security, intention to comply with security, and cultural motivators as critical elements that have an influence on employee effective use of security awareness. To our knowledge, this study is the first to develop a model to investigate the influence of employees\u27 culture on the effective use of security awareness programs. This study contributes to behavioral aspects of the body of knowledge on information security by presenting empirical support that employees\u27 culture, intrinsic motivation, extrinsic motivation, information quality, and attitude toward security awareness programs are essential factors to consider in order to predict employees\u27 decisions on the effective use of security awareness program. The results indicate that influencing employees\u27 attitudes toward security is a better predictor of employees\u27 effective use of security awareness programs than their intention to comply. Both intrinsic and extrinsic factors considered in this study are positively associated with the effective use of security awareness programs. The cultural effect has also proven to influence employees\u27 effective use of security awareness programs. Collectivism and uncertainty avoidance are positively associated with the effective use of security awareness programs, while masculinity/femininity and power distance did not. Furthermore, the study confirms that top management support is a decisive factor in helping increase the effective use of security awareness in the Congolese context. According to the findings, senior management must work on improving employees\u27 intrinsic motivation and attitude concerning security awareness guidelines and must follow through with both reward and punishment. Finally, organizations should create a culture where each employee makes their peers accountable for following the security awareness guidelines

Cultural Influence and the Effective Use of Security Awareness in Congolese Organizations

In today’s global economy, the need to reuse technological advancements as well as training and awareness materials for information security programs from western countries in developing nations is growing. To understand the underlying drivers of employees effective use behaviors as it relates to security awareness programs in organizations; this study examined the extrinsic and intrinsic motivation factors that influence employees’ effective use of security awareness programs in organizations located in developing nations. The results showed that influencing employees’ attitudes toward security is a better predictor of employees’ effective use of security awareness programs than compliance intention. Cultural has also shown to have an influence over employee’s effective use of security awareness program

Extrinsic Factors Influencing the Effective Use of Security Awareness Guidelines: A Comparative Study between a Bank and a Telecommunications Company

Recently, the telecommunication and banking industries, regarded as key infrastructures of a country’s economy, are experiencing a rapid transformation driven by changing consumer behaviors, increased competitive environment and new innovations, for example mobile technology. Thus, the purpose of this study is to investigate the influence of extrinsic factors on the behavioral decisions of users to effectively use a security awareness program. This study is quantitative in nature and explores the relationship between effective information use and other variables namely; management support, reward, punishment, social pressure, information quality and attitude. The results of the empirical testing demonstrate that information quality and attitude of employees are relevant factors towards using a security awareness program. Our results also show that reward and threat of punishment are less relevant factors

Cultural Influence and the Effective Use of Security Awareness in Congolese Organizations

In today’s global economy, there is a growing need to apply technological advancements as well as training and awareness materials from western countries on information security programs in developing nations. To understand the underlying drivers of employees’ effective use behaviors in relation to security awareness programs in organizations, this study examines the extrinsic and intrinsic motivation factors that influence employees located in developing nations. The results indicate that influencing employees’ attitudes toward security is a better predictor of employees’ effective use of security awareness programs than their intention to comply. Cultural effects has also proven to have an influence on employees’ effective use of security awareness programs

A prototype for continuous security awareness in financial institutions

Information security is recognized as a management issue. Sarbanes-Oxley specifies that management is ultimately responsible for the security, accuracy, and privacy of information relating to corporate financial records and by ricochet the protection of Personally Identifiable Information (PII). Many organizations have established information security program. One of the key components of an information security program is to build security awareness as humans are considered as the weakest link of the security chain. In order for security awareness programs to add value to an organization and stay effective against the threat against human hacking, it is important to measure and continuously improve its effectiveness. This paper uses design science research approach to propose a prototype for continuous security awareness improvement in financial institutions. The prototype will be contribution in the information security field and will guide decision makers at financial institutions in their choice of security awareness product