University of Worcester Worcester Research and Publications
 
  USER PANEL:
  ABOUT THE COLLECTION:
  CONTACT DETAILS:

The Effect of Organizational Factors on the Mitigation of Information Security Insider Threats

Lists
Tools

Sohrabi Safa, Nader ORCID logoORCID: https://orcid.org/0000-0003-4897-0084 and Abroshan, H. (2025) The Effect of Organizational Factors on the Mitigation of Information Security Insider Threats. Information, 16 (7). pp. 1-21. ISSN 2078-2489

[thumbnail of information.pdf]
Preview
 Text
information.pdf - Published Version
Available under License Creative Commons Attribution.
Download (1MB) | Preview

Abstract

Insider threats pose significant challenges to organizations, seriously endangering information security and privacy protection. These threats arise when employees with legitimate access to systems and databases misuse their privileges. Such individuals may alter, delete, or insert data into datasets, sell customer or client email addresses, leak strategic company plans, or transfer industrial and intellectual property information. These actions can severely damage a company’s reputation, result in revenue losses and loss of competitive advantage, and, in extreme cases, lead to bankruptcy. This study presents a novel solution that examines how organizational factors such as job satisfaction and security, organizational support, attachment, commitment, involvement in information security, and organizational norms influence employees’ attitudes and intentions, thereby mitigating insider threats. A key strength of this research is its integration of two foundational theories: the Social Bond Theory (SBT) and the Theory of Planned Behavior (TPB). The results reveal that job satisfaction and security, affective and normative commitment, information security training, and personal norms all contribute to reducing insider threats. Furthermore, the findings indicate that employees’ attitudes, perceived behavioral control, and subjective norms significantly influence their intentions to mitigate insider threats. However, organizational support and continuance commitment were not found to have a significant impact.

Item Type: Article
Additional Information:

Article 538
Uncontrolled Discrete Keywords: information security, insider threats, social bond, commitment, human factors
Subjects: Q Science > Q Science (General)
T Technology > T Technology (General)
Divisions: College of Business, Psychology and Sport > Worcester Business School
Related URLs:
Copyright Info: All articles published by MDPI are made immediately available worldwide under an open access license. No special permission is required to reuse all or part of the article published by MDPI, including figures and tables., © 2025 by the authors. Licensee MDPI, Basel, Switzerland. This article is an open access article distributed under the terms and conditions of the Creative Commons Attribution (CC BY) license (https://creativecommons.org/ licenses/by/4.0/).
Depositing User: Nader Sohrabisafa
Date Deposited: 03 Jul 2025 18:45
Last Modified: 03 Jul 2025 18:45
URI: https://eprints.worc.ac.uk/id/eprint/15145

Actions (login required)

View Item View Item
Altmetric

View Altmetric information about this item.

CORE (COnnecting REpositories)
  
     
© University of Worcester Henwick Grove, WR2 6AJ Tel: 01905 855000 | Materials in WRaP are protected by copyright and other intellectual property rights. By using WRaP you agree to abide by UK copyright laws.
Worcester Research and Publications is powered by EPrints 3 which is developed by the School of Electronics and Computer Science at the University of Southampton. More information and software credits.