Boosting employee information security compliance: the contingent roles of task–technology and person–organization fits
Abstract In the domain of information security (IS) management, the influence of individual behavior on organizational security has garnered considerable attention, underscored by a dynamically evolving technological landscape. Research to date extensively highlights the necessity of understanding i...
Saved in:
| Main Authors: | , , |
|---|---|
| Format: | Article |
| Language: | English |
| Published: |
Springer Nature
2025-04-01
|
| Series: | Humanities & Social Sciences Communications |
| Online Access: | https://doi.org/10.1057/s41599-025-04718-x |
| Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
| _version_ | 1849712755921125376 |
|---|---|
| author | Inho Hwang Ribin Seo Sungho Hu |
| author_facet | Inho Hwang Ribin Seo Sungho Hu |
| author_sort | Inho Hwang |
| collection | DOAJ |
| description | Abstract In the domain of information security (IS) management, the influence of individual behavior on organizational security has garnered considerable attention, underscored by a dynamically evolving technological landscape. Research to date extensively highlights the necessity of understanding individual roles yet consistently overlooks the complexities of how individual IS policy awareness, threat perception, and compliance behavior intricately intertwine, especially when aligned with organizational needs. This study uniquely addresses these complexities by integrating the concepts of task-technology fit (TTF) and person-organization fit (POF), which are crucial for strategic alignment between individual capabilities and organizational IS frameworks. Our investigation focuses on how TTF and POF are moderators in the relationship between IS policy awareness, threat perception, and compliance behavior. Analyzing survey data from 526 employees across various industries demonstrates that a heightened awareness of IS policies significantly boosts threat perception, fostering more robust compliance behaviors. More critically, our findings reveal that TTF substantially amplifies the influence of policy awareness on threat perception, while POF enhances the transition from threat perception to compliance behavior. These results underscore the importance of contextual factors in shaping effective IS management strategies. This research contributes novel insights into the interplay between individual behaviors and organizational contexts, significantly enriching the discourse in IS management. By demonstrating the pivotal roles of TTF and POF, our study provides a deeper understanding of these dynamics and offers practical guidance for organizations, equipping them with the knowledge to design more effective IS strategies. Including TTF and POF in designing IS strategies is vital in minimizing human-error-related security breaches, thereby strengthening the overall IS posture of organizations. This highlights an urgent need for IS frameworks that not only address but integrate these critical alignment factors, reinforcing the importance of our findings in the broader context of IS management. |
| format | Article |
| id | doaj-art-25438c04e48249caa48ddfa62d500526 |
| institution | DOAJ |
| issn | 2662-9992 |
| language | English |
| publishDate | 2025-04-01 |
| publisher | Springer Nature |
| record_format | Article |
| series | Humanities & Social Sciences Communications |
| spelling | doaj-art-25438c04e48249caa48ddfa62d5005262025-08-20T03:14:10ZengSpringer NatureHumanities & Social Sciences Communications2662-99922025-04-0112111310.1057/s41599-025-04718-xBoosting employee information security compliance: the contingent roles of task–technology and person–organization fitsInho Hwang0Ribin Seo1Sungho Hu2Assistant professor of management information system, College of General Education, Kookmin UniversityAssistant professor of entrepreneurship and innovation strategy, Department of Entrepreneurship and Small Business, Soongsil UniversityResearch professor, Research Information Analysis Center, Office of Research Management, Korea UniversityAbstract In the domain of information security (IS) management, the influence of individual behavior on organizational security has garnered considerable attention, underscored by a dynamically evolving technological landscape. Research to date extensively highlights the necessity of understanding individual roles yet consistently overlooks the complexities of how individual IS policy awareness, threat perception, and compliance behavior intricately intertwine, especially when aligned with organizational needs. This study uniquely addresses these complexities by integrating the concepts of task-technology fit (TTF) and person-organization fit (POF), which are crucial for strategic alignment between individual capabilities and organizational IS frameworks. Our investigation focuses on how TTF and POF are moderators in the relationship between IS policy awareness, threat perception, and compliance behavior. Analyzing survey data from 526 employees across various industries demonstrates that a heightened awareness of IS policies significantly boosts threat perception, fostering more robust compliance behaviors. More critically, our findings reveal that TTF substantially amplifies the influence of policy awareness on threat perception, while POF enhances the transition from threat perception to compliance behavior. These results underscore the importance of contextual factors in shaping effective IS management strategies. This research contributes novel insights into the interplay between individual behaviors and organizational contexts, significantly enriching the discourse in IS management. By demonstrating the pivotal roles of TTF and POF, our study provides a deeper understanding of these dynamics and offers practical guidance for organizations, equipping them with the knowledge to design more effective IS strategies. Including TTF and POF in designing IS strategies is vital in minimizing human-error-related security breaches, thereby strengthening the overall IS posture of organizations. This highlights an urgent need for IS frameworks that not only address but integrate these critical alignment factors, reinforcing the importance of our findings in the broader context of IS management.https://doi.org/10.1057/s41599-025-04718-x |
| spellingShingle | Inho Hwang Ribin Seo Sungho Hu Boosting employee information security compliance: the contingent roles of task–technology and person–organization fits Humanities & Social Sciences Communications |
| title | Boosting employee information security compliance: the contingent roles of task–technology and person–organization fits |
| title_full | Boosting employee information security compliance: the contingent roles of task–technology and person–organization fits |
| title_fullStr | Boosting employee information security compliance: the contingent roles of task–technology and person–organization fits |
| title_full_unstemmed | Boosting employee information security compliance: the contingent roles of task–technology and person–organization fits |
| title_short | Boosting employee information security compliance: the contingent roles of task–technology and person–organization fits |
| title_sort | boosting employee information security compliance the contingent roles of task technology and person organization fits |
| url | https://doi.org/10.1057/s41599-025-04718-x |
| work_keys_str_mv | AT inhohwang boostingemployeeinformationsecuritycompliancethecontingentrolesoftasktechnologyandpersonorganizationfits AT ribinseo boostingemployeeinformationsecuritycompliancethecontingentrolesoftasktechnologyandpersonorganizationfits AT sunghohu boostingemployeeinformationsecuritycompliancethecontingentrolesoftasktechnologyandpersonorganizationfits |