請用此 Handle URI 來引用此文件:
http://tdr.lib.ntu.edu.tw/jspui/handle/123456789/57462
標題: | 探討員工舉發資訊安全違規事件之意圖研究 Employee Intention to Whistle-Blow Information Security Policy Violation |
作者: | Liang-Cheng Wei 魏良丞 |
指導教授: | 許瑋元(Carol Hsu) |
關鍵字: | 資訊安全違規事件,內部舉發,資訊安全個人行為研究,一般計畫行為理論,理性選擇理論, Information security policy violation,internal whistleblowing,behavioral issues of information security,theory of planned behavior,rational choice theory, |
出版年 : | 2014 |
學位: | 碩士 |
摘要: | 近年來資訊安全事件層出不窮。許多企業組織因資料外洩而蒙受鉅額損失。追究其原因,發現內部人員行為是非常關鍵的一環。現今已有諸多的內部控制制度(例如:資訊存取權限控管、電腦監控、教育訓練等)被廣泛使用來對抗組織內部的員工疏失與惡意犯罪行為。然而,沒有一個對策手段能夠百分之百地防範所有潛藏的違規事件。有的時候,違規事件的發現者會是組織內部的其他成員,因此組織需要倚賴這些人的揭弊才能夠及早修正會侵害到組織資訊安全的不當行為。為了探討影響員工舉發資訊安全違規事件之意圖,本研究以一般計畫行為理論與理性選擇理論為基礎,歸納出組織層次與個人層次上影響舉發態度與意圖之因素。研究結果發現組織與個人層次的利弊考量皆會影響舉發態度的形塑過程,進而提升了我們在應用員工舉發於對抗組織內部資訊安全違規事件上的認知。 Insider abuse has always been a significant threat to information security management in organizations. In order to address this issue, this research proposes whistleblowing as another complementary measure to other existent approaches to strengthen the internal information security management. In particular, we focus on an investigation of employee intention to whistle-blow information security policy (ISP) violation. Drawing on the theory of planned behavior and rational choice theory, we develop a theoretical model to understand the factors at both organizational and individual levels that influence whistleblowing attitude and whistleblowing intention. Through a survey-based empirical test, we discover that both altruistic and egoistic concerns are involved in the development of whistleblowing attitudes. The results not only extend our understanding of whistleblowing motivation but also offer managers directions to promote disclosure of internal security breach. |
URI: | http://tdr.lib.ntu.edu.tw/jspui/handle/123456789/57462 |
全文授權: | 有償授權 |
顯示於系所單位: | 資訊管理學系 |
文件中的檔案:
檔案 | 大小 | 格式 | |
---|---|---|---|
ntu-103-1.pdf 目前未授權公開取用 | 1.41 MB | Adobe PDF |
系統中的文件,除了特別指名其著作權條款之外,均受到著作權保護,並且保留所有的權利。