Information Security Policies Based on the Behavior of IT Users in the Microfinance Sector of Lambayeque-Peru

Ernesto Celi, Regis Díaz

Research output: Chapter in Book/Report/Conference proceedingConference contributionpeer-review

Abstract

Financial institutions in Peru are obliged to protect information through security systems that are generally not effective in identifying, evaluating and treating the risks resulting from internal threats, defined as an employee who intentionally or not, accesses the information to negatively affect its confidentiality, integrity or availability. The study developed a conceptual model identifies and evaluates the main factors that influence the behaviors, intentional or not, of IT users in organizations of the microfinance sector of Lambayeque Peru. The evaluated factors are related to the behavior, the influence of the environment and the perception of the control established, to identify in advance the possible risk scenarios that later become an internal threat. This work is based on the theories of planned behavior, reasoned action and deterrence. A survey prepared by the researchers and validated using the Conbach alpha statistic was applied to a sample of 110 IT users, belonging to eight microfinance entities. Through the correlation analysis, it was obtained that the factors related to the intentional behavior obtain a correlation coefficient of 0.695 with respect to the compliance of the information security policies, while the factors related to the non-intentional behavior obtain a coefficient of correlation of 0.564. The model explains 63.9% of the behavior with the identified factors.

Original languageEnglish
Title of host publicationProceedings of the 5th Brazilian Technology Symposium - Emerging Trends, Issues, and Challenges in the Brazilian Technology
EditorsYuzo Iano, Rangel Arthur, Osamu Saotome, Guillermo Kemper, Reinaldo Padilha França
PublisherSpringer Science and Business Media Deutschland GmbH
Pages331-340
Number of pages10
ISBN (Print)9783030575472
DOIs
StatePublished - 2021
Event5th Brazilian Technology Symposium, BTSym 2019 - Campinas, Brazil
Duration: 22 Oct 201924 Oct 2019

Publication series

NameSmart Innovation, Systems and Technologies
Volume201
ISSN (Print)2190-3018
ISSN (Electronic)2190-3026

Conference

Conference5th Brazilian Technology Symposium, BTSym 2019
Country/TerritoryBrazil
CityCampinas
Period22/10/1924/10/19

Bibliographical note

Publisher Copyright:
© 2021, Springer Nature Switzerland AG.

Keywords

  • Behavioral theories
  • IT users
  • Information security policies

Fingerprint

Dive into the research topics of 'Information Security Policies Based on the Behavior of IT Users in the Microfinance Sector of Lambayeque-Peru'. Together they form a unique fingerprint.

Cite this