Technology-push and need-pull roles in information system security diffusion

Quey Jen Yeh, Chang Arthur Jung-Ting

研究成果: Article同行評審

2 引文 斯高帕斯(Scopus)

摘要

Research of information system security (ISS) usually conceives of security models on the basis of positive, strategic benefits, such as planning or developing a security baseline. However, ISS works only when it enables an organization to protect against attacks, so managers seldom adopt positively based new security measures. By theorising ISS as a technology cluster that consists of distinguishable but interrelated countermeasures, this study analyses managers' security concerns on the basis of two forces - technology-push (TP) and need-pull (NP) - traditionally applied to technology diffusion. Both TP, which entails managers' perceived security threats, and NP, or requirements associated with the industry, organisational readiness, and security incidents, forces may prompt organisational ISS diffusion. The empirical findings suggest this conceptualisation effectively explains organisational ISS diffusion, though NP forces appear dominant. In general, organisations are less likely to adopt new security measures unless compelled to do so by industry or security gaps or if they are large enough and technically prepared for security innovations. Therefore, organisations should adjust their security plans to align with the threats facing their industries.

原文English
頁(從 - 到)321-343
頁數23
期刊International Journal of Technology Management
54
發行號2-3
DOIs
出版狀態Published - 2011 三月

All Science Journal Classification (ASJC) codes

  • 勞資關係
  • 工程 (全部)
  • 電腦科學應用
  • 策略與管理
  • 法律

指紋

深入研究「Technology-push and need-pull roles in information system security diffusion」主題。共同形成了獨特的指紋。

引用此