Skip to main content

Lund University Publications

LUND UNIVERSITY LIBRARIES

Leadership and the Psychology of Awareness: Three Theoretical Approaches to Information Security Management

Holmberg, Robert LU and Sundström, Mikael LU orcid (2012) In Organization Management Journal 9(1).
Abstract
The authors argue that Information Security Management (ISM) would benefit from studies that examine the social and psychological mechanisms that, when in evidence, generate employee aware¬ness of information security (IS) related issues. Properly instilled, IS awareness has the power to en¬gender a proactive wariness beyond mechanical guidelines, however detailed. To study how awareness travels in com¬plex organisations the authors devise a framework to catch mecha¬nisms grounded in psychological and sociological theories. To illustrate the framework, the authors then turn to an empirical study of a medium-sized company where they sound managers for definitions of IS and ISM; for initiatives intended to influence IS and IS awareness among... (More)
The authors argue that Information Security Management (ISM) would benefit from studies that examine the social and psychological mechanisms that, when in evidence, generate employee aware¬ness of information security (IS) related issues. Properly instilled, IS awareness has the power to en¬gender a proactive wariness beyond mechanical guidelines, however detailed. To study how awareness travels in com¬plex organisations the authors devise a framework to catch mecha¬nisms grounded in psychological and sociological theories. To illustrate the framework, the authors then turn to an empirical study of a medium-sized company where they sound managers for definitions of IS and ISM; for initiatives intended to influence IS and IS awareness among em¬ployees; and for their views on learning related to IS and ISM. The study highlights the difficulties facing mana¬gers charged with IS matters, whose responsibilities are often considered peripheral by the general em¬ployee. It also provides several pointers how to go about the complex business of aware¬ness-building. (Less)
Please use this url to cite or link to this publication:
author
and
organization
publishing date
type
Contribution to journal
publication status
published
subject
keywords
Information Security Management, Information Security, IS, ISM, Awareness, Leadership
in
Organization Management Journal
volume
9
issue
1
publisher
Routledge
external identifiers
  • scopus:84874057205
ISSN
1541-6518
DOI
10.1080/15416518.2012.666952
language
English
LU publication?
yes
id
63d62de1-4b14-45b6-a7b8-c69b8f183a8d (old id 2374242)
date added to LUP
2016-04-01 13:53:36
date last changed
2022-01-27 21:43:41
@article{63d62de1-4b14-45b6-a7b8-c69b8f183a8d,
  abstract     = {{The authors argue that Information Security Management (ISM) would benefit from studies that examine the social and psychological mechanisms that, when in evidence, generate employee aware¬ness of information security (IS) related issues. Properly instilled, IS awareness has the power to en¬gender a proactive wariness beyond mechanical guidelines, however detailed. To study how awareness travels in com¬plex organisations the authors devise a framework to catch mecha¬nisms grounded in psychological and sociological theories. To illustrate the framework, the authors then turn to an empirical study of a medium-sized company where they sound managers for definitions of IS and ISM; for initiatives intended to influence IS and IS awareness among em¬ployees; and for their views on learning related to IS and ISM. The study highlights the difficulties facing mana¬gers charged with IS matters, whose responsibilities are often considered peripheral by the general em¬ployee. It also provides several pointers how to go about the complex business of aware¬ness-building.}},
  author       = {{Holmberg, Robert and Sundström, Mikael}},
  issn         = {{1541-6518}},
  keywords     = {{Information Security Management; Information Security; IS; ISM; Awareness; Leadership}},
  language     = {{eng}},
  number       = {{1}},
  publisher    = {{Routledge}},
  series       = {{Organization Management Journal}},
  title        = {{Leadership and the Psychology of Awareness: Three Theoretical Approaches to Information Security Management}},
  url          = {{http://dx.doi.org/10.1080/15416518.2012.666952}},
  doi          = {{10.1080/15416518.2012.666952}},
  volume       = {{9}},
  year         = {{2012}},
}