Skip to Main Content
Organizations highly prioritize strengthening employee compliance with information security policies. Despite the considerable attention paid to how employees' beliefs and attitudes towards security policy compliance affect compliant behavior or its intention, exactly how employees' work-related attitudes and security policy compliance are related has seldom been addressed. This work distinguishes between security measures in an organization's information security policy as technical and procedural controls. This work also considers how three attitudes (i.e. job satisfaction, organizational commitment, and attitudes towards adopting or complying with a specific measure) affect two behavioral intentions (i.e. intentions of adopting a technical measure and complying with a procedural measure). Propositions derived from the conceptual model significantly contribute to efforts to elucidate security policy compliance behavior.