SPROUTS HOME | FIRST TIME VISITORS | ABOUT | BOARD | GUIDE for AUTHORS | FAQ |CONTACT US
sprouts Login | Create Account AIS
Working Papers on Information Systems ISSN 1535-6078
Browse by: Year | Tag | Author | Organization | Proceedings
Advanced search

Towards a A New Meta-Theory for Designing IS Security Training Approaches

Mari Karjalainen
The University of Oulu, Finland
Mikko Siponen
The University of Oulu, Finland


Abstract
Employee non-compliance with information systems (IS) security policies is a key concern for organisations. To tackle this problem, scholars have advanced several IS security training approaches. Despite the fact that the importance of having effective training is understood by scholars and practitioners, IS security training is largely a theoretically underdeveloped area. To this end, we advance a meta-theory for IS security training, based on Hare’s theory of three levels of thinking. It is a meta-theory because it suggests that IS security training has certain fundamental characteristics which separate it from other forms of training, and it advances pedagogical requirements for the design and evaluation of IS security training approaches. After sketching this meta-theory, including four pedagogical requirements for IS security training approaches, we show that no existing IS security training approach meets all of these requirements. To this end, we put forth an IS security training approach which meets all these requirements. For scholars, this study offers new theoretical insights into the fundamental characteristics of IS security training; a set of principles for designing and evaluating IS security training approaches; and an agenda for future research on IS security training. For practitioners designing and implementing IS security training at organisations, this study offers principles for designing effective IS security training approaches in practice.

Full Text Document:
[img]
Preview
PDF 726Kb
Reference:Karjalainen, M., Siponen, M. (2009). "Towards a A New Meta-Theory for Designing IS Security Training Approaches," Proceedings > Proceedings of JAIS Theory Development Workshop . Sprouts: Working Papers on Information Systems, 9(53). http://sprouts.aisnet.org/9-53
Keywords:IS Security, Meta-Theory, Learning Paradigms, IS Security Training
Item Type:Article - Volume 9 Article 53 (2009)
Language:English
Email: Mari Karjalainen (mari.karjalainen@tol.oulu.fi)
Mikko Siponen (msiponen@tols16.oulu.fi)

Repository Staff Only: item control page

Show Tags

Tag this item: