An Analysis On The Influencing Factors Of Employees' Information Security Behavior

Improved technology, hardware and software alone have been unable to protect the information security of the organization because of the complex environment of the external information security and variable threat means. As a consequence, the core position of these employees in the organization of the overall information security system has becoming more and more important. With a lot of theoretical and empirical research, many scholars have proved that the information security behavior of the employees is an important factor that affects the information security of the organization. However, the research on the factors influencing the information security behavior of employees has not been paid much attention.Therefore, this thesis draws on the relevant theories of psychology and statistics to analyze the mechanism of various factors that influence the information security behavior of employees and analyze the categories and influencing modes of these influencing factors.The results of this study will help the organizational managers control the influencing factors to promote the employees to carry out the information security behavior actively and correctly, what is aimed at enhancing the firmness of the organizational security system.The main work and contribution of this thesis lie in the following aspects:From the perspective of threat avoidance and based on the theory of planned behavior and the theory of protection motivation, this thesis introduces the influencing factors such as information security awareness, organizational norms, experience and involvement to construct the influencing factors model of organizational employees' information security behavior.Based on the constructed model, the corresponding research hypotheses are given, and each hypothesis is elaborated and demonstrated objectively. The measurement scale and the questionnaire are designed, and the data are collected by line and online collection questionnaire. Then, the descriptive statistical analysis of the valid questionnaire data was carried out. The reliability and validity of the measurement scale were tested by statistical analysis tools, and the model was tested. Finally, the test results were discussed and analyzed.This thesis puts forward the information security behavior acquisition method based on the subconscious state of the organizational employees instead of the behavioral intention data of the employees with the real behavior data of the employees, and makes the further evaluation of the rationality of the model through the mixed data acquisition method.This thesis also puts forward the evaluation plan of employee's information security behavior, and draws up the evaluation result by synthesizing the employee's information security behavior intention score and the real behavior score to help the organization provide the suggestions that improve the information security behavior to the employees to effectively promote the development of the capability of the organizational information security protection.This thesis achieves the software on the information security behavior acquisition and evaluation for the organizational employees' subconscious state based on android. This thesis introduces the developing environment and tools used in the software, explains the design ideas of the software, and introduces the implementation details of key modules including information security behavior acquisition module, communication module and information security behavior level evaluation module. Finally, the operation of the software is introduced.