Technostress and the information security policy compliance conundrum

It has been assumed that an information security policy is an essential measure for the protection of information, which is considered to be one of the most important assets of an organization. Research has shown that an estimated that 91% of employees in an organization fail to comply with an organization's information security policy and that about half of all breeches are a result of this non-compliance. Research has also shown that a relationship exists between self-efficacy and information security policy compliance intentions and between self-efficacy and technostress. Some of this research, based on the Decomposed Theory of Planned Behavior, draws upon these relationships and utilizes multiple regression analysis to see what kind of relationship exists between technostress and information security policy compliance intentions. The results of the multiple regression analysis showed that only one of the sub-constructs of technostress had a significant measurable linear relationship to information security policy compliance intentions. No significant linear relationship was found between the other four sub-constructs of technostress and information security policy compliance intentions. Concerns about the assumption of multicollinearity between the variables however made it difficult to apply these results to the population.