Information Security Policies Compliance among Employees in Cybersecurity Malaysia

Abstract:

Information security policy's compliance is one of the rules that are set by organizations to protect their information or assets. The information security policy helps to reduce cyber attacks or threats that can harm organizations' assets such as data, hardware, software and people where should be adhered by the employees. The study aims to identify the factors influencing the information security's compliance among employees of Cybersecurity Malaysia located in Selangor state. The study applied quantitative method via distributing questionnaires to randomly selected 200 employees of the organization. Five hypotheses were tested to achieve the study objective. Findings discovered that the employee show high agreement to positive acceptance and compliance towards the information security policies. Moreover, the management should provide training on information security policy such as through awareness programs, to strategize an approach to design suitable sanctions so that employees can well aware on the severity and to proactively promote the benefits of compliance with the information security policy that can give impact to the employees’ behavior.