Information security policies and value conflict in multinational companies. (11th June 2018)
- Record Type:
- Journal Article
- Title:
- Information security policies and value conflict in multinational companies. (11th June 2018)
- Main Title:
- Information security policies and value conflict in multinational companies
- Authors:
- Yayla, Alper
Lei, Yu - Abstract:
- Abstract : Purpose: The purpose of this paper is to examine challenges multinational companies face during the diffusion of their information security policies. Parent companies use these policies as their discourse for legitimization of their practices in subsidiaries, which leads to value conflicts in subsidiaries. The authors postulate that, when properly crafted, information security policies can also be used to reduce the very conflicts they are creating. Design/methodology/approach: The proposed framework is conceptualized based on the review of literatures on multinational companies, information security policies and value conflict. Findings: The authors identified three factors that may lead to value conflict in subsidiary companies: cultural distance, institutional distance and stickiness of knowledge. They offer three recommendations based on organizational discourse, ambidexterity and resource allocation to reduce value conflict. Research limitations/implications: The authors postulate that information security policies are the sources of value conflict in subsidiary companies. Yet, when crafted properly, these policies can also offer solutions to minimize value conflict. Practical implications: The proposed framework can be used to increase policy diffusion success, minimize value conflict and, in turn, decrease information security risk. Originality/value: The growing literature on information security policy literature is yet to examine the diffusion ofAbstract : Purpose: The purpose of this paper is to examine challenges multinational companies face during the diffusion of their information security policies. Parent companies use these policies as their discourse for legitimization of their practices in subsidiaries, which leads to value conflicts in subsidiaries. The authors postulate that, when properly crafted, information security policies can also be used to reduce the very conflicts they are creating. Design/methodology/approach: The proposed framework is conceptualized based on the review of literatures on multinational companies, information security policies and value conflict. Findings: The authors identified three factors that may lead to value conflict in subsidiary companies: cultural distance, institutional distance and stickiness of knowledge. They offer three recommendations based on organizational discourse, ambidexterity and resource allocation to reduce value conflict. Research limitations/implications: The authors postulate that information security policies are the sources of value conflict in subsidiary companies. Yet, when crafted properly, these policies can also offer solutions to minimize value conflict. Practical implications: The proposed framework can be used to increase policy diffusion success, minimize value conflict and, in turn, decrease information security risk. Originality/value: The growing literature on information security policy literature is yet to examine the diffusion of policies within multinational companies. The authors argue that information security policies are the source of, and solution to, value conflict in multinational companies. … (more)
- Is Part Of:
- Information and computer security. Volume 26:Number 2(2018)
- Journal:
- Information and computer security
- Issue:
- Volume 26:Number 2(2018)
- Issue Display:
- Volume 26, Issue 2 (2018)
- Year:
- 2018
- Volume:
- 26
- Issue:
- 2
- Issue Sort Value:
- 2018-0026-0002-0000
- Page Start:
- 230
- Page End:
- 245
- Publication Date:
- 2018-06-11
- Subjects:
- Cultural distance -- Institutional distance -- Information security -- Stickiness -- Organizational discourse -- Value conflict
Computer security -- Management -- Periodicals
Computer networks -- Security measures -- Periodicals
Data protection -- Management -- Periodicals
658.47 - Journal URLs:
- http://www.emeraldinsight.com/loi/ics ↗
http://www.emeraldinsight.com/ ↗ - DOI:
- 10.1108/ICS-08-2017-0061 ↗
- Languages:
- English
- ISSNs:
- 2056-4961
- Deposit Type:
- Legaldeposit
- View Content:
- Available online (eLD content is only available in our Reading Rooms) ↗
- Physical Locations:
- British Library DSC - 4481.796000
British Library DSC - BLDSS-3PM
British Library HMNTS - ELD Digital store - Ingest File:
- 7047.xml