Every organization which uses computing systems for business operations has its own information systems security policies (ISP) for its employees to adhere. Failure to comply with the established ISPs by the employees is a major issue in many organizations. Intentional as well as unintentional violations of ISPs cause enormous damages to the organizations. Researchers have criticized that violation of ISPs among the employees happens due to the lack of proper understanding of ISP and the implications of non- compliance. Researchers and academicians have focused their research on identifying the facts behind ISP violations using novel models based on the Protection Motivation Theory (PMT) and on providing recommendations for enhanced adherence behavior to comply with rules. The main objectives of the research in this direction are to motivate the employees to understand their responsibilities in the workplace and encourage them to adhere to the righteous path, thereby adding more benefits to an organization. This survey article provides insights for the scholars and researchers who are interested in this area of study.
展开▼