Litcius/Paper detail

Continuous improvement of information security management: an organisational learning perspective

Fereshteh Ghahramani, Adel Yazdanmehr, Daniel Chen, Jingguo Wang

2022European Journal of Information Systems20 citationsDOI

Abstract

This study explores ways to empower organisations to continuously improve their information security management (ISM). Drawing upon the dynamic capabilities approach, we investigated the mechanism wherein absorptive capacity has an effect. We found that absorptive capacity affects an organisation’s continuous improvement of ISM, with its effect mediated through an organisation’s adaptability to information security threats. In addition, the effect of absorptive capacity on adaptability is contingent upon the organisation’s competitive pressure, which enhances the mediating effect of adaptability. We tested our research model using survey data collected from 130 US-based managers familiar with information security management in their organisations. Theoretical and practical implications of the study are discussed.

Topics & Concepts

AdaptabilityAbsorptive capacityInformation securityKnowledge managementBusinessPerspective (graphical)Information technologyInformation security managementStrategic information systemInformation systems securityProcess managementManagement information systemsComputer scienceInformation systemCloud computingComputer securityManagementSecurity information and event managementCloud computing securityEngineeringEconomicsArtificial intelligenceElectrical engineeringOperating systemInformation and Cyber SecurityInformation Technology Governance and StrategyCybercrime and Law Enforcement Studies
Continuous improvement of information security management: an organisational learning perspective | Litcius