Skip to main content

LUP Student Papers

LUND UNIVERSITY LIBRARIES

The Influence of Organizational Cybersecurity Policies

Vrågård, John LU and Richardson, Markus LU (2025) INFM10 20251
Department of Informatics
Abstract
In today’s increasingly digital world, cybersecurity challenges extend far beyond the organizational perimeter, affecting both professional and personal domains. While organizations invest in comprehensive cybersecurity policies to mitigate risks, less is known about how these policies influence employees’ personal cybersecurity outside the workplace. This study investigates that relationship through semi-structured interviews with employees, experiencing security policies at work. Protection Motivation Theory (PMT) was used to better understand individuals’ motivations for adopting protective practices. The findings suggest that while employees generally maintain stricter security practices at work, driven by institutional support and... (More)
In today’s increasingly digital world, cybersecurity challenges extend far beyond the organizational perimeter, affecting both professional and personal domains. While organizations invest in comprehensive cybersecurity policies to mitigate risks, less is known about how these policies influence employees’ personal cybersecurity outside the workplace. This study investigates that relationship through semi-structured interviews with employees, experiencing security policies at work. Protection Motivation Theory (PMT) was used to better understand individuals’ motivations for adopting protective practices. The findings suggest that while employees generally maintain stricter security practices at work, driven by institutional support and perceived threat severity, there is a noticeable influence of the polices on their personal cybersecurity. Training and policy exposure at work appeared to foster improved private security hygiene, even though the degree of influence varied between individuals. Notably, a more relaxed attitude was observed in personal contexts, often attributed to lower perceived risks and higher response costs. Still the organizational polices played a key role in shaping overall cybersecurity awareness and behavior. (Less)
Please use this url to cite or link to this publication:
author
Vrågård, John LU and Richardson, Markus LU
supervisor
organization
alternative title
The Influence of Organizational Cybersecurity Policies - How Workplace Security Shapes Private Cyber Behavior
course
INFM10 20251
year
type
H1 - Master's Degree (One Year)
subject
keywords
Cybersecurity, Policies, Cyber Hygiene, Behavior, PMT
language
English
id
9204411
date added to LUP
2025-06-23 12:10:25
date last changed
2025-06-23 12:10:25
@misc{9204411,
  abstract     = {{In today’s increasingly digital world, cybersecurity challenges extend far beyond the organizational perimeter, affecting both professional and personal domains. While organizations invest in comprehensive cybersecurity policies to mitigate risks, less is known about how these policies influence employees’ personal cybersecurity outside the workplace. This study investigates that relationship through semi-structured interviews with employees, experiencing security policies at work. Protection Motivation Theory (PMT) was used to better understand individuals’ motivations for adopting protective practices. The findings suggest that while employees generally maintain stricter security practices at work, driven by institutional support and perceived threat severity, there is a noticeable influence of the polices on their personal cybersecurity. Training and policy exposure at work appeared to foster improved private security hygiene, even though the degree of influence varied between individuals. Notably, a more relaxed attitude was observed in personal contexts, often attributed to lower perceived risks and higher response costs. Still the organizational polices played a key role in shaping overall cybersecurity awareness and behavior.}},
  author       = {{Vrågård, John and Richardson, Markus}},
  language     = {{eng}},
  note         = {{Student Paper}},
  title        = {{The Influence of Organizational Cybersecurity Policies}},
  year         = {{2025}},
}