LEADER 05560nam  22006735  450 
001 9910991163803321
005 20250330112912.0
010   $a3-031-86801-3
024 7 $a10.1007/978-3-031-86801-6
035   $a(CKB)38166488300041
035   $a(DE-He213)978-3-031-86801-6
035   $a(MiAaPQ)EBC31981112
035   $a(Au-PeEL)EBL31981112
035   $a(EXLCZ)9938166488300041
100   $a20250330d2025      u|         0
101 0 $aeng
135   $aur|||||||||||
181   $ctxt$2rdacontent
182   $cc$2rdamedia
183   $acr$2rdacarrier
200 10$aBring Your Own Device Security Policy Compliance Framework /$fby Rathika Palanisamy, Azah Anir Norman, Miss Laiha Mat Kiah, Tutut Herawan
205   $a1st ed. 2025.
210  1$aCham :$cSpringer Nature Switzerland :$cImprint: Springer,$d2025.
215   $a1 online resource (XXII, 196 p. 26 illus., 13 illus. in color.) 
225 1 $aInformation Systems Engineering and Management,$x3004-9598 ;$v37
311 08$a3-031-86800-5 
327   $aIntroduction -- Bring Your Own Device -- Theoretical Framework and Hypotheses Development -- Research Methodology -- Analysis, Results and Discussion -- Conclusion and Future Work.
330   $aProliferation of Bring Your Own Device (BYOD) has instigated a widespread change, fast outpacing the security strategies deployed by organizations. The influx of these devices has created information security challenges within organizations, further exacerbated with employees? inconsistent adherence with BYOD security policy. To prevent information security breaches, compliance with BYOD security policy and procedures is vital. This book aims to investigate the factors that determine employees' BYOD security policy compliance by using mixed methods approach. Security policy compliance factors, BYOD practices and security risks were identified following a systematic review approach. Building on Organizational Control Theory, Security Culture and Social Cognitive Theory, a research framework positing a set of plausible factors determining BYOD security policy compliance was developed. Next, with a purposive sample of eight information security experts from selected public sector organizations, interviews and BYOD risk assessments analysis were performed to furnish in-depth insights into BYOD risks, its impact on organizations and recommend control measures to overcome them. This led to the suggestion of four control measures to mitigate critical BYOD security risks such as Security Training and Awareness (SETA), policy, top management commitment and technical countermeasures. The control measures were mapped into the research framework to be tested in the following quantitative phase. The proposed research framework was tested using survey results from 346 employees of three Critical National Information Infrastructure (CNII) agencies. Using Partial Least Squares ? Structural Equation Modelling (PLS-SEM), the framework's validity and reliability were evaluated, and hypotheses were tested. Findings show that perceived mandatoriness, self-efficacy and psychological ownership are influential in predicting employees? BYOD security policy compliance. Specification of security policy is associated with perceived mandatoriness, while BYOD IT support and SETA are significant towards self-efficacy. Unexpectedly, security culture has been found to have no significant relationship to BYOD security policy compliance. Theoretical, practical, and methodological contributions were discussed and suggestions for future research were recommended. The analysis led to a number of insightful findings that contribute to the literature and the management, which are predominantly centered on traditional computing. In view of the ever-increasing BYOD threats to the security of government information, it is imperative that IT managers establish and implement effective policies to protect vital information assets. Consequently, the findings of this study may benefit policymakers, particularly in the public sector, in their efforts to increase BYOD security policy compliance among employees.
410  0$aInformation Systems Engineering and Management,$x3004-9598 ;$v37
606   $aEngineering$xData processing
606   $aData protection
606   $aComputer security
606   $aComputer networks$xSecurity measures
606   $aData Engineering
606   $aData and Information Security
606   $aSecurity Services
606   $aPrinciples and Models of Security
606   $aMobile and Network Security
615  0$aEngineering$xData processing.
615  0$aData protection.
615  0$aComputer security.
615  0$aComputer networks$xSecurity measures.
615 14$aData Engineering.
615 24$aData and Information Security.
615 24$aSecurity Services.
615 24$aPrinciples and Models of Security.
615 24$aMobile and Network Security.
676   $a620.00285
700   $aPalanisamy$b Rathika$4aut$4http://id.loc.gov/vocabulary/relators/aut$01803323
702   $aNorman$b Azah Anir$4aut$4http://id.loc.gov/vocabulary/relators/aut
702   $aKiah$b Miss Laiha Mat$4aut$4http://id.loc.gov/vocabulary/relators/aut
702   $aHerawan$b Tutut$4aut$4http://id.loc.gov/vocabulary/relators/aut
801  0$bMiAaPQ
801  1$bMiAaPQ
801  2$bMiAaPQ
906   $aBOOK
912   $a9910991163803321
996   $aBring Your Own Device Security Policy Compliance Framework$94350128
997   $aUNINA