Security-Related stress - a Neglected Construct in Information Systems stress literature

Means of information security, such as security policies or security education, training, and awareness programs, are suggested to enhance employees’ information security behavior. We posit that at the same time, exactly those security measures may have a negative effect, if employees perceive them, for instance, as difficult to understand, time-consuming, or an invasion of their privacy. However, focusing on pure technostress, information systems (IS) research so far has neglected stress induced by means of information security, although, there is first insight on the relevance of securityrelated stress for IS management. Therefore, in this research-in-progress, we employ the person-environment (PE) fit model to build on as well as expand the existing IS stress literature. We thereby develop a first comprehensive framework of security-related stress, which considers non-technological aspects of security-related stress of employees’ work, personal, and social environment. In doing so, we propose a multidimensional second-order construct and conceptualize how security-related stress affects employees’ productivity directly and indirectly by promoting their perceived level of technostress. The results of our study should help IS management to anticipate and consider the downfalls of information security requirements when formulating companies’ information security measurements, and thus limit the “dark side” of information security.

[1]  CACM staff In the Virtual Extension , 2011, Commun. ACM.

[2]  Qiang Tu,et al.  Computer-related technostress in China , 2005, CACM.

[3]  Monideepa Tarafdar,et al.  The Consequences of Technostress for End Users in Organizations: Conceptual Development and Empirical Validation , 2008, Inf. Syst. Res..

[4]  Dennis F. Galletta,et al.  User Awareness of Security Countermeasures and Its Impact on Information Systems Misuse: A Deterrence Approach , 2009, Inf. Syst. Res..

[5]  René Riedl,et al.  On the biology of technostress: literature review and research agenda , 2012, DATB.

[6]  Henry Ongori,et al.  Occupational Stress in Organizations and Its Effects on Organizational Performance , 2008 .

[7]  Ken H. Guo Security-related behavior in using information systems in the workplace: A review and synthesis , 2013, Comput. Secur..

[8]  Merrill Warkentin,et al.  Beyond Deterrence: An Expanded View of Employee Computer Abuse , 2013, MIS Q..

[9]  Monideepa Tarafdar,et al.  The Impact of Technostress on Role Stress and Productivity , 2007, J. Manag. Inf. Syst..

[10]  Michael E. Whitman Enemy at the gate: threats to information security , 2003, CACM.

[11]  C. D. De Dreu,et al.  Task versus relationship conflict, team performance, and team member satisfaction: a meta-analysis. , 2003, The Journal of applied psychology.

[12]  Tejaswini Herath,et al.  Understanding Employee Responses to Stressful Information Security Requirements: A Coping Perspective , 2014, J. Manag. Inf. Syst..

[13]  Eirik Albrechtsen,et al.  A qualitative study of users' view on information security , 2007, Comput. Secur..

[14]  René Riedl,et al.  Technostress from a Neurobiological Perspective , 2012, Business & Information Systems Engineering.

[15]  Jason Bennett Thatcher,et al.  Interrupting the Workplace: Examining Stressors in an Information Technology Context , 2015, J. Assoc. Inf. Syst..

[16]  Martin H. Levinson Technostress: Coping with Technology @ Work @ Home @ Play , 1999 .

[17]  Monideepa Tarafdar,et al.  Reflecting on the "Dark Side" of Information Technology Use , 2012, Commun. Assoc. Inf. Syst..

[18]  Craig Brod,et al.  Technostress: The Human Cost Of The Computer Revolution , 1984 .

[19]  Eirik Albrechtsen,et al.  The information security digital divide between information security managers and users , 2009, Comput. Secur..

[20]  Clay Posey,et al.  When Computer Monitoring Backfires: Invasion of Privacy and Organizational Injustice as Precursors to Computer Abuse , 2011 .

[21]  Ryan T. Wright,et al.  Operationalizing Multidimensional Constructs in Structural Equation Modeling: Recommendations for IS Research , 2012, Commun. Assoc. Inf. Syst..

[22]  Kimberly Young,et al.  Policies and procedures to manage employee Internet abuse , 2010, Comput. Hum. Behav..

[23]  Varun Grover,et al.  Technostress: Technological Antecedents and Implications , 2011, MIS Q..

[24]  J. French,et al.  The mechanisms of job stress and strain , 1984 .

[25]  Shalini Chandra,et al.  Technostress creators and job outcomes: theorising the moderating influence of personality traits , 2015, Inf. Syst. J..

[26]  P Carayon,et al.  Employee stress and health complaints in jobs with and without electronic performance monitoring. , 1992, Applied ergonomics.

[27]  Monideepa Tarafdar,et al.  Impact of Technostress on End-User Satisfaction and Performance , 2010, J. Manag. Inf. Syst..

[28]  C. Cooper,et al.  Organizational Stress: A Review and Critique of Theory, Research, and Applications , 2001 .

[29]  Chien-Hung Lin,et al.  Managing The Risk Of Overusing Mobile Phones In The Working Environment: A Study Of Ubiquitous Technostress , 2011, PACIS.

[30]  J. R. Aiello,et al.  Electronic performance monitoring and social context: impact on productivity and stress. , 1995, The Journal of applied psychology.

[31]  Tamao Matsui,et al.  Career self-efficacy as a moderator of the relation between occupational stress and strain. , 1992 .

[32]  Monideepa Tarafdar,et al.  Exploring the Impact of Technostress on Productivity , 2005 .

[33]  D'ArcyJohn,et al.  User Awareness of Security Countermeasures and Its Impact on Information Systems Misuse , 2009 .

[34]  Merrill Warkentin,et al.  Fear Appeals and Information Security Behaviors: An Empirical Study , 2010, MIS Q..