Organizational Management, Protection Motivation and Information Security Policy Compliance: A Pilot Study on IT Professionals

Information security is a grave concern to almost every resourceful organization on the planet. Existing literature shows that majority of information security breaches occur due to the negligence of internal employees towards information security policies. Lack of compliance with information security policies is a multidimensional problem, and It requires adiministrative and behavioral solutions. There is plenty of research available for behavioral information security, but most of the research is conducted upon non-IT (information technology) users or non- Specialized users. This research paper is a pilot study for testing the information security policy compliance of IT professionals. Hypotheses were formulated from the literature review, and a framework was developed. The framework consisted of organizational management constructs and two behavioral theories (protection motivation theory and theory of planned behavior). This pilot study showed that organizational management can enhance employees' protection motivation, which later cultivates good information security behavior towards information security policy compliance.