TY - GEN
T1 - Volitional non-malicious insider threats
T2 - 27th Annual Americas Conference on Information Systems, AMCIS 2021
AU - Akello, Patricia
AU - Beebe, Nicole Lang
AU - Raymond, Kim Kwang Choo
N1 - Publisher Copyright:
© AMCIS 2021.
PY - 2021
Y1 - 2021
N2 - In 2020, business operations were changed around the world due to disruptions of COVID-19, forcing organizations to migrate their workforce to a new Work From Home (nWFH) model quickly, and with limited planning, design or testing. As a result, new data security threats have emerged. This study aims to examine an insider-related threat to organizational data due to a self-support model of computing facilitated and accelerated by the mainstream proliferation of convenient, affordable and easily accessible cloud-based applications. Shadow Information Technology is a “double edged sword”-on the one end it boasts benefits of improved job performance, productivity, and cost savings, while on the other end it poses security threats. Moreover, with COVID-19 and nWFH, risks abound as established formal structures of the traditional workplace which reinforces data security policies and procedures are diminished. This gives employees more leeway to leverage unapproved apps with unvetted risk profiles for work-related tasks with the risk of introducing vulnerabilities into the work environment. We examine this issue through the lens of Theory of Planned Behavior (TPB) and General Strain Theory (GST), looking at it from the volitional non-malicious Insider Threat perspective. Study context is nWFH model against the backdrop of COVID-related strains. Expected contribution is in the areas of Insider Threats, Data Security, Shadow IT and Cloud Security. From a theoretical standpoint, the study aims to incorporate GST with the TPB in an attempt to increase its explanatory power while attempting to remedy one of its stated limitations.
AB - In 2020, business operations were changed around the world due to disruptions of COVID-19, forcing organizations to migrate their workforce to a new Work From Home (nWFH) model quickly, and with limited planning, design or testing. As a result, new data security threats have emerged. This study aims to examine an insider-related threat to organizational data due to a self-support model of computing facilitated and accelerated by the mainstream proliferation of convenient, affordable and easily accessible cloud-based applications. Shadow Information Technology is a “double edged sword”-on the one end it boasts benefits of improved job performance, productivity, and cost savings, while on the other end it poses security threats. Moreover, with COVID-19 and nWFH, risks abound as established formal structures of the traditional workplace which reinforces data security policies and procedures are diminished. This gives employees more leeway to leverage unapproved apps with unvetted risk profiles for work-related tasks with the risk of introducing vulnerabilities into the work environment. We examine this issue through the lens of Theory of Planned Behavior (TPB) and General Strain Theory (GST), looking at it from the volitional non-malicious Insider Threat perspective. Study context is nWFH model against the backdrop of COVID-related strains. Expected contribution is in the areas of Insider Threats, Data Security, Shadow IT and Cloud Security. From a theoretical standpoint, the study aims to incorporate GST with the TPB in an attempt to increase its explanatory power while attempting to remedy one of its stated limitations.
KW - Cloud
KW - Cloud security
KW - Covid-19
KW - Insider threats
KW - Shadow IT
KW - Work from home
UR - http://www.scopus.com/inward/record.url?scp=85118624676&partnerID=8YFLogxK
M3 - Conference contribution
AN - SCOPUS:85118624676
T3 - 27th Annual Americas Conference on Information Systems, AMCIS 2021
BT - 27th Annual Americas Conference on Information Systems, AMCIS 2021
PB - Association for Information Systems
Y2 - 9 August 2021 through 13 August 2021
ER -