{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,4,23]],"date-time":"2026-04-23T05:15:06Z","timestamp":1776921306806,"version":"3.51.2"},"reference-count":107,"publisher":"Emerald","issue":"6","license":[{"start":{"date-parts":[[2019,7,8]],"date-time":"2019-07-08T00:00:00Z","timestamp":1562544000000},"content-version":"tdm","delay-in-days":0,"URL":"https:\/\/www.emerald.com\/insight\/site-policies"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":["IMDS"],"published-print":{"date-parts":[[2019,7,8]]},"abstract":"<jats:sec><jats:title content-type=\"abstract-subheading\">Purpose<\/jats:title><jats:p>The purpose of this paper is to explore the human factors triggering information leakage and investigate how companies mitigate insider threat for information sharing integrity.<\/jats:p><\/jats:sec><jats:sec><jats:title content-type=\"abstract-subheading\">Design\/methodology\/approach<\/jats:title><jats:p>The methodology employed is multiple case studies approach with in-depth interviews with five multinational enterprises (MNEs)\/multinational corporations (MNCs).<\/jats:p><\/jats:sec><jats:sec><jats:title content-type=\"abstract-subheading\">Findings<\/jats:title><jats:p>The findings reveal that information leakage can be approached with human governance mechanism such as organizational ethical climate and information security culture. Besides, higher frequency of leakages negatively affects information sharing integrity. Moreover, this paper also contributes to a research framework which could be a guide to overcome information leakage issue in information sharing.<\/jats:p><\/jats:sec><jats:sec><jats:title content-type=\"abstract-subheading\">Research limitations\/implications<\/jats:title><jats:p>The current study involved MNCs\/MNEs operating in Malaysia, while companies in other countries may have different ethical climate and information sharing culture. Thus, for future research, it will be good to replicate the study in a larger geographic region to verify the findings and insights of this research.<\/jats:p><\/jats:sec><jats:sec><jats:title content-type=\"abstract-subheading\">Practical implications<\/jats:title><jats:p>This research contributes to the industry and business that are striving toward solving the mounting problem of information leakage by raising awareness of human factors and to take appropriate mitigating governance strategies to pre-empt information leakage. This paper also contributes to a novel theoretical model that characterizes the iniquities of humans in sharing information, and suggests measures which could be a guide to avert disruptive leakages.<\/jats:p><\/jats:sec><jats:sec><jats:title content-type=\"abstract-subheading\">Originality\/value<\/jats:title><jats:p>This paper is likely an unprecedented research in molding human governance in the domain of information sharing and its Achilles\u2019 heel which is information leakage.<\/jats:p><\/jats:sec>","DOI":"10.1108\/imds-12-2018-0546","type":"journal-article","created":{"date-parts":[[2019,6,27]],"date-time":"2019-06-27T10:01:22Z","timestamp":1561629682000},"page":"1242-1267","source":"Crossref","is-referenced-by-count":43,"title":["Human factors in information leakage: mitigation strategies for information sharing integrity"],"prefix":"10.1108","volume":"119","author":[{"given":"Wai Peng","family":"Wong","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Hwee Chin","family":"Tan","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Kim Hua","family":"Tan","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Ming-Lang","family":"Tseng","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"140","reference":[{"key":"key2019100712125547000_ref001","article-title":"Guarding against the erosion of competitive advantage: a knowledge leakage mitigation model","year":"2015"},{"issue":"7","key":"key2019100712125547000_ref002","doi-asserted-by":"crossref","first-page":"163","DOI":"10.14257\/ijsia.2015.9.7.15","article-title":"Cultivating and assessing an organizational information security culture: an empirical study","volume":"9","year":"2015","journal-title":"International Journal of Security and Its Applications"},{"key":"key2019100712125547000_ref003","first-page":"1","article-title":"Information security culture: a definition and a literature review","year":"2014"},{"issue":"2016","key":"key2019100712125547000_ref004","first-page":"137","article-title":"A survey on data leakage prevention systems","volume":"62","year":"2016","journal-title":"Journal of Network and Computer Applications"},{"issue":"3","key":"key2019100712125547000_ref005","doi-asserted-by":"crossref","first-page":"438","DOI":"10.1287\/mnsc.1080.0930","article-title":"Strategic information management under leakage in a supply chain","volume":"55","year":"2009","journal-title":"Management Science"},{"issue":"4","key":"key2019100712125547000_ref006","doi-asserted-by":"crossref","first-page":"329","DOI":"10.1016\/j.jom.2010.06.002","article-title":"Qualitative case studies in operations management: trends, research outcomes, and future research implications","volume":"29","year":"2011","journal-title":"Journal of Operations Management"},{"key":"key2019100712125547000_ref007","unstructured":"Bureau, F.I.P. (2013), \u201cUnintentional insider threats: a foundational study\u201d, available at: http:\/\/resources.sei.cmu.edu\/asset_files\/TechnicalNote\/2013_004_001_58748.pdf (accessed August 28, 2017)."},{"key":"key2019100712125547000_ref103","unstructured":"Business Monitor International (BMI) (2017), \u201cMultinational companies in Malaysia online database\u201d, BMI Research \u2013 A Fitch Group Company, available at: www.fitchsolutions.com\/bmi-research (accessed September 4, 2017)."},{"issue":"1","key":"key2019100712125547000_ref008","doi-asserted-by":"crossref","first-page":"120","DOI":"10.1016\/j.ejor.2014.11.021","article-title":"The effect of inventory record inaccuracy in information exchange supply chains","volume":"243","year":"2015","journal-title":"European Journal of Operational Research"},{"key":"key2019100712125547000_ref009","volume-title":"The CERT Guide to Insider Threats: How to Prevent, Detect, and Respond to Information Technology Crimes (Theft, Sabotage, Fraud)","year":"2012"},{"key":"key2019100712125547000_ref010","unstructured":"Cappelli, D.M., Moore, A.P., Trzeciak, R.F. and Shimeall, T.J. (2009), \u201cCommon sense guide to prevention and detection of insider threat\u201d, CERT Insider Threat Study Team, Carnegie Mellon University, Pittsburgh, PA, available at: https:\/\/pdfs.semanticscholar.org\/0a54\/b1b543b32e8ce57887c149c2bf92d986b1c2.pdf (accessed September 10, 2017)."},{"issue":"3","key":"key2019100712125547000_ref011","doi-asserted-by":"crossref","first-page":"11","DOI":"10.1080\/08874417.2015.11645767","article-title":"Impacts of comprehensive information security programs on information security culture","volume":"55","year":"2015","journal-title":"Journal of Computer Information Systems"},{"issue":"2013","key":"key2019100712125547000_ref012","first-page":"447","article-title":"Understanding the violation of is security policy in organizations: an integrated model based on social control and deterrence theory","volume":"39","year":"2013","journal-title":"Computers and Security"},{"issue":"4","key":"key2019100712125547000_ref013","doi-asserted-by":"crossref","first-page":"186","DOI":"10.1016\/j.istr.2010.04.004","article-title":"Human factors in information security: the insider threat \u2013 who can you trust these days?","volume":"14","year":"2009","journal-title":"Information Security Technical Report"},{"key":"key2019100712125547000_ref014","volume-title":"Research Design: Qualitative, Quantitative, and Mixed Methods Approaches","year":"2014"},{"issue":"1","key":"key2019100712125547000_ref015","first-page":"90","article-title":"Future directions for behavioral information security research","volume":"32","year":"2013","journal-title":"Computers and Security"},{"issue":"2","key":"key2019100712125547000_ref016","doi-asserted-by":"crossref","first-page":"457","DOI":"10.1016\/j.ejor.2015.11.004","article-title":"Bullwhip effect and supply chain costs with low-and high-quality information on inventory shrinkage","volume":"250","year":"2016","journal-title":"European Journal of Operational Research"},{"issue":"3","key":"key2019100712125547000_ref017","doi-asserted-by":"crossref","first-page":"275","DOI":"10.1108\/09600031211225963","article-title":"Logistics case study based research: towards higher quality","volume":"42","year":"2012","journal-title":"International Journal of Physical Distribution & Logistics Management"},{"issue":"2","key":"key2019100712125547000_ref018","doi-asserted-by":"crossref","first-page":"196","DOI":"10.1016\/j.cose.2009.09.002","article-title":"A framework and assessment instrument for information security culture","volume":"29","year":"2010","journal-title":"Computers & Security"},{"issue":"2015","key":"key2019100712125547000_ref019","first-page":"162","article-title":"Improving the information security culture through monitoring and implementation actions illustrated through a case study","volume":"49","year":"2015","journal-title":"Computers & Security"},{"issue":"4","key":"key2019100712125547000_ref020","doi-asserted-by":"crossref","first-page":"314","DOI":"10.1111\/j.1365-2929.2006.02418.x","article-title":"The qualitative research interview","volume":"40","year":"2006","journal-title":"Medical Education"},{"key":"key2019100712125547000_ref021","doi-asserted-by":"crossref","unstructured":"Dimotakis, N., Ilies, R. and Mount, M.K. (2008), \u201cIntentional negative behaviors at work\u201d, Research in Personnel and Human Resources Management, Emerald Group Publishing Limited, Amsterdam, Vol. 27, pp. 247-277.","DOI":"10.1016\/S0742-7301(08)27006-4"},{"issue":"4","key":"key2019100712125547000_ref022","doi-asserted-by":"crossref","first-page":"628","DOI":"10.1108\/IMDS-10-2013-0430","article-title":"Managing integrated information flow for delivery reliability","volume":"114","year":"2014","journal-title":"Industrial Management & Data Systems"},{"key":"key2019100712125547000_ref023","unstructured":"Economic Transformation Programme (2016), \u201cMore MNCs keen to take advantage of country\u2019s location\u201d, available at: http:\/\/etp.pemandu.gov.my\/Related_Stories-@More_MNCs_keen_to_take_advantage_of_countrys_location.aspx (accessed August 10, 2017)."},{"issue":"1","key":"key2019100712125547000_ref024","doi-asserted-by":"crossref","first-page":"25","DOI":"10.5465\/amj.2007.24160888","article-title":"Theory building from cases: opportunities and challenges","volume":"50","year":"2007","journal-title":"Academy of Management Journal"},{"issue":"2","key":"key2019100712125547000_ref025","first-page":"287","article-title":"A taxonomy of situation awareness errors","volume":"3","year":"1995","journal-title":"Human Factors in Aviation Operations"},{"issue":"5","key":"key2019100712125547000_ref026","doi-asserted-by":"crossref","first-page":"358","DOI":"10.1108\/13598540710776935","article-title":"Information sharing and supply chain performance: the role of connectivity and willingness","volume":"12","year":"2007","journal-title":"Supply Chain Management: An International Journal"},{"key":"key2019100712125547000_ref027","doi-asserted-by":"crossref","unstructured":"Greitzer, F.L. and Frincke, D.A. (2010), \u201cCombining traditional cyber security audit data with psychosocial data: towards predictive modeling for insider threat mitigation\u201d, Insider Threats in Cyber Security, pp. 85-113.","DOI":"10.1007\/978-1-4419-7133-3_5"},{"issue":"2","key":"key2019100712125547000_ref028","first-page":"2025","article-title":"Modeling human behavior to anticipate insider attacks","volume":"4","year":"2011","journal-title":"Journal of Strategic Security"},{"issue":"1","key":"key2019100712125547000_ref029","doi-asserted-by":"crossref","first-page":"61","DOI":"10.1109\/MSP.2008.8","article-title":"Combating the insider cyber threat","volume":"6","year":"2008","journal-title":"IEEE Security & Privacy"},{"key":"key2019100712125547000_ref031","first-page":"236","article-title":"Analysis of unintentional insider threats deriving from social engineering exploits","year":"2014"},{"key":"key2019100712125547000_ref030","first-page":"2025","article-title":"Unintentional insider threat: contributing factors, observables, and mitigation strategies","year":"2014"},{"issue":"1","key":"key2019100712125547000_ref032","doi-asserted-by":"crossref","first-page":"30","DOI":"10.1111\/1468-2389.00224","article-title":"Investigating the dimensionality of counterproductive work behavior","volume":"11","year":"2003","journal-title":"International Journal of Selection and Assessment"},{"issue":"2","key":"key2019100712125547000_ref033","doi-asserted-by":"crossref","first-page":"203","DOI":"10.2753\/MIS0742-1222280208","article-title":"Understanding nonmalicious security violations in the workplace: a composite behavior model","volume":"28","year":"2011","journal-title":"Journal of Management Information Systems"},{"issue":"1","key":"key2019100712125547000_ref034","doi-asserted-by":"crossref","first-page":"5","DOI":"10.1108\/02635570710719025","article-title":"Individual characteristics and ethical decision-making in an IT context","volume":"107","year":"2007","journal-title":"Industrial Management and Data Systems"},{"issue":"10","key":"key2019100712125547000_ref035","doi-asserted-by":"crossref","first-page":"1753","DOI":"10.1016\/S0048-7333(03)00061-1","article-title":"Profiting from voluntary information spillovers: how users benefit by freely revealing their innovations","volume":"32","year":"2003","journal-title":"Research Policy"},{"issue":"2","key":"key2019100712125547000_ref036","doi-asserted-by":"crossref","first-page":"14","DOI":"10.3102\/0013189X012002014","article-title":"Multisite qualitative policy research: optimizing description and generalizability","volume":"12","year":"1983","journal-title":"Educational Researcher"},{"issue":"5","key":"key2019100712125547000_ref037","doi-asserted-by":"crossref","first-page":"395","DOI":"10.1108\/09555340610686967","article-title":"Outsourcing, information leakage and the risk of losing technology-based competencies","volume":"18","year":"2006","journal-title":"European Business Review"},{"issue":"9","key":"key2019100712125547000_ref038","doi-asserted-by":"crossref","first-page":"3600","DOI":"10.1016\/j.jbusres.2016.01.001","article-title":"Linking perceived ethical climate to organizational deviance: the cognitive, affective, and attitudinal mechanisms","volume":"69","year":"2016","journal-title":"Journal of Business Research"},{"issue":"1","key":"key2019100712125547000_ref039","first-page":"4","article-title":"Insiders and insider threats: an overview of definitions and mitigation techniques","volume":"2","year":"2011","journal-title":"Journal of Wireless Mobile Networks, Ubiquitous Computing, and Dependable Applications"},{"issue":"8","key":"key2019100712125547000_ref040","doi-asserted-by":"crossref","first-page":"1102","DOI":"10.1108\/JMTM-03-2016-0033","article-title":"Supply chain information sharing: challenges and risk mitigation strategies","volume":"27","year":"2016","journal-title":"Journal of Manufacturing Technology Management"},{"issue":"1","key":"key2019100712125547000_ref041","doi-asserted-by":"crossref","first-page":"1","DOI":"10.1007\/s10796-013-9419-8","article-title":"Guest editorial: a brief overview of data leakage and insider threats","volume":"15","year":"2013","journal-title":"Information Systems Frontiers"},{"key":"key2019100712125547000_ref042","unstructured":"InfoWatch (2016), \u201cGlobal Data Leakage Report, 2016\u201d, available at: https:\/\/infowatch.com\/node\/2654\/done?sid=3412 (accessed August 10, 2017)."},{"issue":"2","key":"key2019100712125547000_ref043","first-page":"64","article-title":"An exploratory investigation of message-person congruence in information security awareness campaigns","volume":"43","year":"2014","journal-title":"Computers and Security"},{"issue":"C","key":"key2019100712125547000_ref044","first-page":"77","article-title":"Information sharing across multiple supply chain tiers: a Delphi study on antecedents","volume":"193","year":"2017","journal-title":"International Journal of Production Economics"},{"issue":"2","key":"key2019100712125547000_ref045","doi-asserted-by":"crossref","first-page":"288","DOI":"10.1057\/jors.2013.175","article-title":"Impact of information errors on supply chain performance","volume":"66","year":"2015","journal-title":"Journal of the Operational Research Society"},{"issue":"1","key":"key2019100712125547000_ref046","doi-asserted-by":"crossref","first-page":"26","DOI":"10.1108\/13598540510578351","article-title":"Trust, commitment and relationships in supply chain management: a path analysis","volume":"10","year":"2005","journal-title":"Supply Chain Management: An International Journal"},{"issue":"1","key":"key2019100712125547000_ref047","doi-asserted-by":"crossref","first-page":"79","DOI":"10.1504\/IJMTM.2000.001329","article-title":"Information sharing in a supply chain","volume":"1","year":"2000","journal-title":"International Journal of Manufacturing Technology and Management"},{"issue":"9","key":"key2019100712125547000_ref048","doi-asserted-by":"crossref","first-page":"1196","DOI":"10.1287\/mnsc.48.9.1196.177","article-title":"Information sharing in a supply chain with horizontal competition","volume":"48","year":"2002","journal-title":"Management Science"},{"issue":"7","key":"key2019100712125547000_ref049","doi-asserted-by":"crossref","first-page":"394","DOI":"10.17705\/1jais.00232","article-title":"Understanding security behaviors in personal computer usage: a threat avoidance perspective","volume":"11","year":"2010","journal-title":"Journal of the Association for Information Systems"},{"issue":"3","key":"key2019100712125547000_ref050","first-page":"215","article-title":"How significant is human error as a cause of privacy breaches? An empirical study and a framework for error management","volume":"28","year":"2009","journal-title":"Computers and Security"},{"issue":"1","key":"key2019100712125547000_ref051","first-page":"53","article-title":"Data theft: a prototypical insider threat","volume":"39","year":"2008","journal-title":"Insider Attack and Cyber Security"},{"key":"key2019100712125547000_ref052","volume-title":"Qualitative Research Methods: A Data Collectors Field Guide","year":"2005"},{"issue":"5","key":"key2019100712125547000_ref053","doi-asserted-by":"crossref","first-page":"371","DOI":"10.1016\/j.cose.2004.10.003","article-title":"A preliminary model of end user sophistication for insider threat prediction in IT systems","volume":"24","year":"2005","journal-title":"Computers and Security"},{"issue":"1","key":"key2019100712125547000_ref054","doi-asserted-by":"crossref","first-page":"203","DOI":"10.1177\/0149206313503019","article-title":"The structure of counterproductive work behavior: a review, a structural meta-analysis, and a primary study","volume":"42","year":"2016","journal-title":"Journal of Management"},{"issue":"2","key":"key2019100712125547000_ref055","doi-asserted-by":"crossref","first-page":"175","DOI":"10.1007\/s10551-006-9084-7","article-title":"Continuities and extensions of ethical climate theory: a meta-analytic review","volume":"69","year":"2006","journal-title":"Journal of Business Ethics"},{"key":"key2019100712125547000_ref056","unstructured":"MDBC (2017), \u201cMalaysia\u201d, Malaysian Dutch Business Council, Kuala Lumpur, available at: www.mdbc.com.my\/information\/country-information\/malaysia\/ (accessed August 3, 2017)."},{"key":"key2019100712125547000_ref057","unstructured":"MIDA (2017), \u201cWhy Malaysia?\u201d, Malaysian Investment Development Authority, available at: www.mida.gov.my\/home\/why-malaysia\/posts\/ (accessed August 4, 2017)."},{"key":"key2019100712125547000_ref058","volume-title":"Qualitative Data Analysis: An Expanded Sourcebook","year":"1994"},{"key":"key2019100712125547000_ref059","volume-title":"Multiple-Case Designs: Encyclopedia of case Study Research","year":"2010"},{"key":"key2019100712125547000_ref060","unstructured":"Ministry of Finance Malaysia (2016), \u201c2017 Economic Report\u201d, available at: www.treasury.gov.my\/index.php\/en\/economy\/economic-report.html (accessed August 10, 2017)."},{"key":"key2019100712125547000_ref061","article-title":"Understanding one aspect of the knowledge leakage concept: people","year":"2006"},{"key":"key2019100712125547000_ref062","article-title":"Understanding the factors of information leakage through online social networking to safeguard organizational information","year":"2010"},{"issue":"469","key":"key2019100712125547000_ref063","first-page":"1","article-title":"Insider theft of intellectual property for business advantage: a preliminary model","volume":"1","year":"2009","journal-title":"CEUR Workshop Proceedings"},{"issue":"5-6","key":"key2019100712125547000_ref064","doi-asserted-by":"crossref","first-page":"743","DOI":"10.1080\/14783360410001680224","article-title":"Information integrity (I*I): the next quality frontier","volume":"15","year":"2004","journal-title":"Total Quality Management & Business Excellence"},{"issue":"2017","key":"key2019100712125547000_ref065","first-page":"19","article-title":"Organizational ethical climates and employee\u2019s trust in colleagues, the supervisor, and the organization","volume":"71","year":"2017","journal-title":"Journal of Business Research"},{"issue":"6","key":"key2019100712125547000_ref066","doi-asserted-by":"crossref","first-page":"677","DOI":"10.1108\/17410390710830727","article-title":"Information risks management in supply chains: an assessment and mitigation framework","volume":"20","year":"2007","journal-title":"Journal of Enterprise Information Management"},{"key":"key2019100712125547000_ref067","first-page":"214","article-title":"Understanding insider threat: a framework for characterising attacks","year":"2014"},{"key":"key2019100712125547000_ref068","first-page":"1","article-title":"Assessing information security culture: a critical analysis of current approaches","year":"2012"},{"key":"key2019100712125547000_ref069","unstructured":"Olzak, T. (2010), \u201cData leakage: catching water in a sieve\u201d, Blogpost, available at: http:\/\/blogs.csoonline.com\/1187\/DataLeakage (accessed June 25, 2017)."},{"key":"key2019100712125547000_ref070","doi-asserted-by":"crossref","unstructured":"Omar, M. (2015), \u201cInsider threats: detecting and controlling malicious insiders\u201d, New Threats and Countermeasures in Digital Crime and Cyber Terrorism, IGI Global, PA, pp. 162-172.","DOI":"10.4018\/978-1-4666-8345-7.ch009"},{"key":"key2019100712125547000_ref071","doi-asserted-by":"crossref","unstructured":"Orgill, G.L., Bailey, M.G. and Orgill, P.M. (2004), \u201cThe urgency for effective user privacy-education to counter social engineering attacks on secure computer systems\u201d, paper presented at the Proceedings of the 5th Conference on Information Technology Education, Salt Lake City, UT, pp. 177\u2013181.","DOI":"10.1145\/1029533.1029577"},{"key":"key2019100712125547000_ref072","doi-asserted-by":"publisher","first-page":"47","DOI":"10.1016\/j.dss.2016.09.012","article-title":"An assessment of opportunity-reducing techniques in information security: an insider threat perspective","volume":"92","year":"2016","journal-title":"Decision Support Systems"},{"key":"key2019100712125547000_ref073","volume-title":"Digital Tools for Qualitative Research","year":"2014"},{"issue":"8","key":"key2019100712125547000_ref074","doi-asserted-by":"crossref","first-page":"816","DOI":"10.1016\/j.cose.2009.05.008","article-title":"Self-efficacy in information security: its influence on end users\u2019 information security practice behaviour","volume":"28","year":"2009","journal-title":"Computers & Security"},{"issue":"2015","key":"key2019100712125547000_ref075","first-page":"22","article-title":"Knowledge sharing, knowledge leaking and relative innovation performance: an empirical study","volume":"35","year":"2015","journal-title":"Technovation"},{"issue":"2","key":"key2019100712125547000_ref076","doi-asserted-by":"crossref","first-page":"555","DOI":"10.2307\/256693","article-title":"A typology of deviant workplace behaviors: a multidimensional scaling study","volume":"38","year":"1995","journal-title":"Academy of Management Journal"},{"key":"key2019100712125547000_ref077","doi-asserted-by":"crossref","unstructured":"Sackett, P.R. and DeVore, C.J. (2001), \u201cCounterproductive behaviors at work\u201d, Handbook of Industrial, Work, and Organizational Psychology, Sage Publications, London, Vol. 1, pp. 145-164.","DOI":"10.4135\/9781848608320.n9"},{"key":"key2019100712125547000_ref078","unstructured":"Salleh, A. (2016), \u201cHuman governance: bringing the meaning of integrity in the life of professional accountants\u201d, working paper, Putra Graduate School of Business, Selangor."},{"key":"key2019100712125547000_ref079","volume-title":"Research Methods for Business Students","year":"2009"},{"key":"key2019100712125547000_ref080","unstructured":"Schlienger, T. and Teufel, S. (2002), \u201cInformation security culture: the socio-cultural dimension in information security management\u201d, IFIP TC11 International Conference on Information Security, Cairo, Vol. 15, pp. 191-201."},{"key":"key2019100712125547000_ref081","unstructured":"Schrader, S. (1989), \u201cInformal technology transfer between companies: information leakage or know-how trading?\u201d, Working Paper No. WP# 3007-89-BPS, Sloan School of Management, MIT, Cambridge."},{"issue":"2","key":"key2019100712125547000_ref082","doi-asserted-by":"crossref","first-page":"238","DOI":"10.1108\/JEIM-03-2014-0031","article-title":"Modeling information risk in supply chain using Bayesian networks","volume":"29","year":"2016","journal-title":"Journal of Enterprise Information Management"},{"issue":"4","key":"key2019100712125547000_ref083","doi-asserted-by":"crossref","first-page":"20","DOI":"10.5465\/amp.2011.0156","article-title":"Ethical climates and their effects on organizational outcomes: implications from the past and prophecies for the future","volume":"26","year":"2012","journal-title":"The Academy of Management Perspectives"},{"key":"key2019100712125547000_ref084","volume-title":"Cliffs Quick Review: Psychology","year":"2007"},{"issue":"2","key":"key2019100712125547000_ref085","doi-asserted-by":"crossref","first-page":"124","DOI":"10.1016\/j.cose.2004.07.001","article-title":"Analysis of end user security behaviors","volume":"24","year":"2005","journal-title":"Computers and Security"},{"key":"key2019100712125547000_ref086","unstructured":"Stoneburner, G., Goguen, A. and Feringa, A. (2002), \u201cRisk management guide for information technology systems\u201d, National Institute of Standards and Technology SP800-3, US Government Printing Office, available at: http:\/\/csrc.nist.gov\/publications\/nistpubs\/800\u201330\/sp800\u201330.pdf(2002)"},{"key":"key2019100712125547000_ref087","doi-asserted-by":"crossref","unstructured":"Sumner, J., Cantiello, J., Cortelyou-Ward, K. and Noblin, A.M. (2012), \u201cInformation sharing among health care employers: using technology to create an advantageous culture of sharing\u201d, Annual Review of Health Care Management: Strategy and Policy Perspectives on Reforming Health Systems, Emerald Group Publishing, Bingley, pp. 123-141.","DOI":"10.1108\/S1474-8231(2012)0000013010"},{"issue":"3","key":"key2019100712125547000_ref088","doi-asserted-by":"crossref","first-page":"621","DOI":"10.1007\/s10796-015-9553-6","article-title":"Information and knowledge leakage in supply chain","volume":"18","year":"2016","journal-title":"Information Systems Frontiers"},{"key":"key2019100712125547000_ref089","unstructured":"The Star Online (2016), \u201cFacing cyberattacks in 2016 and beyond\u201d, The Star Online, available at: www.thestar.com.my\/tech\/tech-opinion\/2016\/01\/28\/facing-cyber-attacks-in-2016-and-beyond\/ (accessed January 1, 2017)."},{"key":"key2019100712125547000_ref090","unstructured":"The Star Online (2017), \u201cStronger economic growth for 2017\u201d, The Star Online, available at: www.thestar.com.my\/business\/business-news\/2017\/07\/04\/stronger-economic-growth-for-2017\/ (accessed August 10, 2017)."},{"key":"key2019100712125547000_ref091","unstructured":"The World Bank Group (2017), \u201cDoing Business 2017: equal opportunity for all\u201d, available at: www.doingbusiness.org\/reports\/global-reports\/doing-business-2017 (accessed August 10, 2017)."},{"issue":"2","key":"key2019100712125547000_ref092","doi-asserted-by":"crossref","first-page":"325","DOI":"10.1007\/s10551-010-0725-5","article-title":"Exploring the influence of organizational ethical climate on knowledge management","volume":"101","year":"2011","journal-title":"Journal of Business Ethics"},{"issue":"1","key":"key2019100712125547000_ref093","first-page":"51","article-title":"A theory and measure of ethical climate in organizations","volume":"9","year":"1987","journal-title":"Research in Corporate Social Performance and Policy"},{"key":"key2019100712125547000_ref094","doi-asserted-by":"crossref","first-page":"101","DOI":"10.2307\/2392857","article-title":"The organizational bases of ethical work climates","volume":"33","year":"1988","journal-title":"Administrative Science Quarterly"},{"issue":"2","key":"key2019100712125547000_ref095","doi-asserted-by":"crossref","first-page":"195","DOI":"10.1108\/01443570210414329","article-title":"Case research in operations management","volume":"22","year":"2002","journal-title":"International Journal of Operations and Production Management"},{"issue":"2","key":"key2019100712125547000_ref096","first-page":"1","article-title":"Behavioural and policy issues in information systems security: the insider threat","volume":"18","year":"2009","journal-title":"European Journal of Information Systems"},{"issue":"1","key":"key2019100712125547000_ref097","doi-asserted-by":"crossref","first-page":"1","DOI":"10.25300\/MISQ\/2013\/37.1.01","article-title":"Beyond deterrence: an expanded view of employee computer abuse","volume":"37","year":"2013","journal-title":"MIS Quarterly"},{"key":"key2019100712125547000_ref098","volume-title":"Case Study Research: Design and Methods","year":"2009"},{"key":"key2019100712125547000_ref099","volume-title":"Case Study Research: Design and Methods","year":"2013"},{"issue":"4","key":"key2019100712125547000_ref100","doi-asserted-by":"crossref","first-page":"1351","DOI":"10.1007\/s10845-011-0527-3","article-title":"Mitigating the risk of information leakage in a two-level supply chain through optimal supplier selection","volume":"23","year":"2012","journal-title":"Journal of Intelligent Manufacturing"},{"issue":"3","key":"key2019100712125547000_ref101","doi-asserted-by":"crossref","first-page":"351","DOI":"10.1016\/j.compind.2010.10.002","article-title":"Modeling and evaluating information leakage caused by inferences in supply chains","volume":"62","year":"2011","journal-title":"Computers in Industry"},{"key":"key2019100712125547000_ref102","unstructured":"American Psychological Association (2017), \u201cGlossary of psychological terms\u201d, available at: www.apa.org\/research\/action\/glossary.aspx?tab=2 (accessed September 18, 2017)."},{"key":"key2019100712125547000_ref104","volume-title":"Research Design: Choosing Among Five Approaches","year":"2007"},{"issue":"4","key":"key2019100712125547000_ref105","doi-asserted-by":"crossref","first-page":"5","DOI":"10.1002\/piq.20036","article-title":"Managing information sharing within an organizational setting: a social network perspective","volume":"21","year":"2009","journal-title":"Performance Improvement Quarterly"},{"issue":"6","key":"key2019100712125547000_ref106","doi-asserted-by":"crossref","first-page":"983","DOI":"10.1016\/j.indmarman.2013.03.013","article-title":"Managing knowledge leakage in strategic alliances: the effects of trust and formal contracts","volume":"42","year":"2013","journal-title":"Industrial Marketing Management"},{"key":"key2019100712125547000_ref107","unstructured":"United Nations Conference on Trade and Development (2016), \u201cWorld Investment Prospects Survey 2014-2016\u201d, available at: http:\/\/unctad.org\/en\/pages\/publications\/World-Investment-Prospects-Survey.aspx (accessed August 10, 2017)."}],"container-title":["Industrial Management &amp; Data Systems"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/www.emerald.com\/insight\/content\/doi\/10.1108\/IMDS-12-2018-0546\/full\/xml","content-type":"application\/xml","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/www.emerald.com\/insight\/content\/doi\/10.1108\/IMDS-12-2018-0546\/full\/html","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,7,24]],"date-time":"2025-07-24T21:54:19Z","timestamp":1753394059000},"score":1,"resource":{"primary":{"URL":"http:\/\/www.emerald.com\/imds\/article\/119\/6\/1242-1267\/178014"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2019,7,8]]},"references-count":107,"journal-issue":{"issue":"6","published-print":{"date-parts":[[2019,7,8]]}},"alternative-id":["10.1108\/IMDS-12-2018-0546"],"URL":"https:\/\/doi.org\/10.1108\/imds-12-2018-0546","relation":{},"ISSN":["0263-5577"],"issn-type":[{"value":"0263-5577","type":"print"}],"subject":[],"published":{"date-parts":[[2019,7,8]]}}}