{"id":"https://openalex.org/W2474818065","doi":"https://doi.org/10.1108/ics-12-2015-0048","title":"Comparing the information security culture of employees who had read the information security policy and those who had not","display_name":"Comparing the information security culture of employees who had read the information security policy and those who had not","publication_year":2016,"publication_date":"2016-06-13","ids":{"openalex":"https://openalex.org/W2474818065","doi":"https://doi.org/10.1108/ics-12-2015-0048","mag":"2474818065"},"language":"en","primary_location":{"id":"doi:10.1108/ics-12-2015-0048","is_oa":false,"landing_page_url":"https://doi.org/10.1108/ics-12-2015-0048","pdf_url":null,"source":{"id":"https://openalex.org/S4210195545","display_name":"Information and Computer Security","issn_l":"2056-4961","issn":["2056-4961","2056-497X"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319811","host_organization_name":"Emerald Publishing Limited","host_organization_lineage":["https://openalex.org/P4310319811"],"host_organization_lineage_names":["Emerald Publishing Limited"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Information &amp; Computer Security","raw_type":"journal-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5044951113","display_name":"Ad\u00e9le da Veiga","orcid":"https://orcid.org/0000-0001-9777-8721"},"institutions":[{"id":"https://openalex.org/I165390105","display_name":"University of South Africa","ror":"https://ror.org/048cwvf49","country_code":"ZA","type":"education","lineage":["https://openalex.org/I165390105"]}],"countries":["ZA"],"is_corresponding":true,"raw_author_name":"Ad\u00e9le Da Veiga","raw_affiliation_strings":["School of Computing, University of South Africa (Unisa), Johannesburg, South Africa"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"School of Computing, University of South Africa (Unisa), Johannesburg, South Africa","institution_ids":["https://openalex.org/I165390105"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":1,"corresponding_author_ids":["https://openalex.org/A5044951113"],"corresponding_institution_ids":["https://openalex.org/I165390105"],"apc_list":null,"apc_paid":null,"fwci":11.043,"has_fulltext":false,"cited_by_count":69,"citation_normalized_percentile":{"value":0.98175917,"is_in_top_1_percent":false,"is_in_top_10_percent":true},"cited_by_percentile_year":{"min":90,"max":100},"biblio":{"volume":"24","issue":"2","first_page":"139","last_page":"151"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10734","display_name":"Information and Cyber Security","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10734","display_name":"Information and Cyber Security","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.9965999722480774,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T12519","display_name":"Cybercrime and Law Enforcement Studies","score":0.9760000109672546,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/information-security","display_name":"Information security","score":0.7510085105895996},{"id":"https://openalex.org/keywords/information-security-management","display_name":"Information security management","score":0.7294565439224243},{"id":"https://openalex.org/keywords/information-security-standards","display_name":"Information security standards","score":0.6972448229789734},{"id":"https://openalex.org/keywords/information-systems-security","display_name":"Information systems security","score":0.5860713124275208},{"id":"https://openalex.org/keywords/security-policy","display_name":"Security policy","score":0.5607023239135742},{"id":"https://openalex.org/keywords/information-security-audit","display_name":"Information security audit","score":0.5257847309112549},{"id":"https://openalex.org/keywords/standard-of-good-practice","display_name":"Standard of Good Practice","score":0.5074610114097595},{"id":"https://openalex.org/keywords/business","display_name":"Business","score":0.4820885956287384},{"id":"https://openalex.org/keywords/originality","display_name":"Originality","score":0.4493572413921356},{"id":"https://openalex.org/keywords/certified-information-security-manager","display_name":"Certified Information Security Manager","score":0.4442565441131592},{"id":"https://openalex.org/keywords/security-management","display_name":"Security management","score":0.42918145656585693},{"id":"https://openalex.org/keywords/security-information-and-event-management","display_name":"Security information and event management","score":0.39079365134239197},{"id":"https://openalex.org/keywords/information-system","display_name":"Information system","score":0.36513298749923706},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.34155118465423584},{"id":"https://openalex.org/keywords/public-relations","display_name":"Public relations","score":0.335100919008255},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.30693185329437256},{"id":"https://openalex.org/keywords/cloud-computing-security","display_name":"Cloud computing security","score":0.23658770322799683},{"id":"https://openalex.org/keywords/security-service","display_name":"Security service","score":0.2020314633846283},{"id":"https://openalex.org/keywords/psychology","display_name":"Psychology","score":0.18270546197891235},{"id":"https://openalex.org/keywords/political-science","display_name":"Political science","score":0.18071302771568298},{"id":"https://openalex.org/keywords/network-security-policy","display_name":"Network security policy","score":0.17510205507278442},{"id":"https://openalex.org/keywords/management-information-systems","display_name":"Management information systems","score":0.16468167304992676},{"id":"https://openalex.org/keywords/social-psychology","display_name":"Social psychology","score":0.1058705747127533}],"concepts":[{"id":"https://openalex.org/C527648132","wikidata":"https://www.wikidata.org/wiki/Q189900","display_name":"Information security","level":2,"score":0.7510085105895996},{"id":"https://openalex.org/C148976360","wikidata":"https://www.wikidata.org/wiki/Q1662500","display_name":"Information security management","level":5,"score":0.7294565439224243},{"id":"https://openalex.org/C139547956","wikidata":"https://www.wikidata.org/wiki/Q6031202","display_name":"Information security standards","level":5,"score":0.6972448229789734},{"id":"https://openalex.org/C2988319471","wikidata":"https://www.wikidata.org/wiki/Q189900","display_name":"Information systems security","level":4,"score":0.5860713124275208},{"id":"https://openalex.org/C154908896","wikidata":"https://www.wikidata.org/wiki/Q2167404","display_name":"Security policy","level":2,"score":0.5607023239135742},{"id":"https://openalex.org/C39358052","wikidata":"https://www.wikidata.org/wiki/Q2578632","display_name":"Information security audit","level":5,"score":0.5257847309112549},{"id":"https://openalex.org/C47309137","wikidata":"https://www.wikidata.org/wiki/Q7598357","display_name":"Standard of Good Practice","level":5,"score":0.5074610114097595},{"id":"https://openalex.org/C144133560","wikidata":"https://www.wikidata.org/wiki/Q4830453","display_name":"Business","level":0,"score":0.4820885956287384},{"id":"https://openalex.org/C2776950860","wikidata":"https://www.wikidata.org/wiki/Q2914681","display_name":"Originality","level":3,"score":0.4493572413921356},{"id":"https://openalex.org/C180823521","wikidata":"https://www.wikidata.org/wiki/Q1662502","display_name":"Certified Information Security Manager","level":5,"score":0.4442565441131592},{"id":"https://openalex.org/C83163435","wikidata":"https://www.wikidata.org/wiki/Q3954104","display_name":"Security management","level":2,"score":0.42918145656585693},{"id":"https://openalex.org/C103377522","wikidata":"https://www.wikidata.org/wiki/Q3493999","display_name":"Security information and event management","level":4,"score":0.39079365134239197},{"id":"https://openalex.org/C180198813","wikidata":"https://www.wikidata.org/wiki/Q121182","display_name":"Information system","level":2,"score":0.36513298749923706},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.34155118465423584},{"id":"https://openalex.org/C39549134","wikidata":"https://www.wikidata.org/wiki/Q133080","display_name":"Public relations","level":1,"score":0.335100919008255},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.30693185329437256},{"id":"https://openalex.org/C184842701","wikidata":"https://www.wikidata.org/wiki/Q370563","display_name":"Cloud computing security","level":3,"score":0.23658770322799683},{"id":"https://openalex.org/C29983905","wikidata":"https://www.wikidata.org/wiki/Q7445066","display_name":"Security service","level":3,"score":0.2020314633846283},{"id":"https://openalex.org/C15744967","wikidata":"https://www.wikidata.org/wiki/Q9418","display_name":"Psychology","level":0,"score":0.18270546197891235},{"id":"https://openalex.org/C17744445","wikidata":"https://www.wikidata.org/wiki/Q36442","display_name":"Political science","level":0,"score":0.18071302771568298},{"id":"https://openalex.org/C117110713","wikidata":"https://www.wikidata.org/wiki/Q3394676","display_name":"Network security policy","level":4,"score":0.17510205507278442},{"id":"https://openalex.org/C29848774","wikidata":"https://www.wikidata.org/wiki/Q61905","display_name":"Management information systems","level":3,"score":0.16468167304992676},{"id":"https://openalex.org/C77805123","wikidata":"https://www.wikidata.org/wiki/Q161272","display_name":"Social psychology","level":1,"score":0.1058705747127533},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.0},{"id":"https://openalex.org/C79974875","wikidata":"https://www.wikidata.org/wiki/Q483639","display_name":"Cloud computing","level":2,"score":0.0},{"id":"https://openalex.org/C199539241","wikidata":"https://www.wikidata.org/wiki/Q7748","display_name":"Law","level":1,"score":0.0},{"id":"https://openalex.org/C11012388","wikidata":"https://www.wikidata.org/wiki/Q170658","display_name":"Creativity","level":2,"score":0.0}],"mesh":[],"locations_count":2,"locations":[{"id":"doi:10.1108/ics-12-2015-0048","is_oa":false,"landing_page_url":"https://doi.org/10.1108/ics-12-2015-0048","pdf_url":null,"source":{"id":"https://openalex.org/S4210195545","display_name":"Information and Computer Security","issn_l":"2056-4961","issn":["2056-4961","2056-497X"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319811","host_organization_name":"Emerald Publishing Limited","host_organization_lineage":["https://openalex.org/P4310319811"],"host_organization_lineage_names":["Emerald Publishing Limited"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Information &amp; Computer Security","raw_type":"journal-article"},{"id":"pmh:oai:uir.unisa.ac.za:10500/23161","is_oa":false,"landing_page_url":"http://hdl.handle.net/10500/23161","pdf_url":null,"source":{"id":"https://openalex.org/S4306400472","display_name":"Unisa Institutional Repository (University of South Africa)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I165390105","host_organization_name":"University of South Africa","host_organization_lineage":["https://openalex.org/I165390105"],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"","raw_type":"Article"}],"best_oa_location":null,"sustainable_development_goals":[{"score":0.7200000286102295,"display_name":"Peace, Justice and strong institutions","id":"https://metadata.un.org/sdg/16"}],"awards":[],"funders":[],"has_content":{"grobid_xml":false,"pdf":false},"content_urls":null,"referenced_works_count":23,"referenced_works":["https://openalex.org/W416981147","https://openalex.org/W642584797","https://openalex.org/W1492986004","https://openalex.org/W1602619638","https://openalex.org/W1736209534","https://openalex.org/W1801397362","https://openalex.org/W1966997002","https://openalex.org/W1970809283","https://openalex.org/W1987381312","https://openalex.org/W1988826963","https://openalex.org/W2008556210","https://openalex.org/W2010902645","https://openalex.org/W2027038762","https://openalex.org/W2029699977","https://openalex.org/W2044935933","https://openalex.org/W2045940846","https://openalex.org/W2054289496","https://openalex.org/W2065903999","https://openalex.org/W2071524391","https://openalex.org/W2142318891","https://openalex.org/W2265415932","https://openalex.org/W2316966198","https://openalex.org/W4238409446"],"related_works":["https://openalex.org/W2584162156","https://openalex.org/W40842196","https://openalex.org/W3005750480","https://openalex.org/W2138802450","https://openalex.org/W2263437148","https://openalex.org/W2232533402","https://openalex.org/W585485619","https://openalex.org/W2481421941","https://openalex.org/W4285247012","https://openalex.org/W2474818065"],"abstract_inverted_index":{"Purpose":[0],"This":[1,217],"study":[2,58],"aims,":[3],"firstly,":[4],"to":[5,29,126,142,150,189,202],"determine":[6],"what":[7],"influence":[8,167,229],"the":[9,15,21,27,51,106,127,152,159,169,185,193,224,230,246,259],"information":[10,16,39,52,73,82,107,118,132,153,160,170,186,206,225,231,247,254],"security":[11,17,40,53,74,83,108,119,133,154,161,171,187,207,226,232,248,255],"policy":[12,28,109,188,227],"has":[13,164],"on":[14,168],"culture":[18,22,41,75,84,120,134,172,208,233,256,260],"by":[19],"comparing":[20],"of":[23,173,213],"employees":[24,48,102,112,157,182,244],"who":[25,31,103,113],"read":[26,50,105,158,184,245],"those":[30],"do":[32],"not,":[33],"and,":[34,200],"secondly,":[35],"whether":[36],"a":[37,71,165,204,210,252],"stronger":[38,205,253],"is":[42,59],"embedded":[43],"over":[44,64,140],"time":[45,141],"if":[46,243],"more":[47,99],"have":[49,183,251],"policy.":[54],"Design/methodology/approach":[55],"An":[56],"empirical":[57],"conducted":[60],"at":[61],"four":[62,94],"intervals":[63],"eight":[65],"years":[66],"across":[67],"12":[68],"countries":[69],"using":[70,267],"validated":[72],"assessment":[76,125],"(ISCA)":[77],"questionnaire.":[78],"Findings":[79],"The":[80,116,131],"overall":[81,117],"average":[85],"scores":[86],"as":[87,89],"well":[88],"individual":[90],"statements":[91],"for":[92,101],"all":[93],"survey":[95],"assessments":[96],"were":[97],"significantly":[98],"positive":[100,166],"had":[104,114],"compared":[110],"with":[111,209],"not.":[115],"also":[121],"improved":[122,263],"from":[123],"one":[124],"next.":[128],"Research":[129],"limitations/implications":[130],"should":[135,179],"be":[136,262],"measured":[137],"and":[138,145,147,198,238,257],"benchmarked":[139],"monitor":[143],"change":[144],"identify":[146],"prioritise":[148],"actions":[149],"improve":[151],"culture.":[155],"If":[156],"policy,":[162,249],"it":[163],"an":[174,268],"organisation.":[175],"Practical":[176],"implications":[177],"Organisations":[178],"ensure":[180],"that":[181,223,242,258],"aid":[190],"in":[191],"minimising":[192],"human":[194],"risk,":[195],"related":[196],"errors":[197],"incidents":[199],"ultimately,":[201],"instil":[203],"higher":[211],"level":[212],"compliant":[214],"behaviour.":[215],"Originality/value":[216],"research":[218,221],"confirms":[219],"theoretical":[220],"indicating":[222],"could":[228],"positively.":[234],"It":[235],"provides":[236],"novel":[237],"statistical":[239],"evidence":[240],"illustrating":[241],"they":[250],"can":[261],"through":[264],"targeted":[265],"interventions":[266],"ISCA.":[269]},"counts_by_year":[{"year":2026,"cited_by_count":1},{"year":2025,"cited_by_count":4},{"year":2024,"cited_by_count":6},{"year":2023,"cited_by_count":6},{"year":2022,"cited_by_count":8},{"year":2021,"cited_by_count":16},{"year":2020,"cited_by_count":12},{"year":2019,"cited_by_count":8},{"year":2018,"cited_by_count":7},{"year":2017,"cited_by_count":1}],"updated_date":"2026-05-21T06:26:12.895304","created_date":"2025-10-10T00:00:00"}