{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,6,10]],"date-time":"2026-06-10T02:15:20Z","timestamp":1781057720806,"version":"3.54.1"},"reference-count":90,"publisher":"Emerald","issue":"2","license":[{"start":{"date-parts":[[2021,3,12]],"date-time":"2021-03-12T00:00:00Z","timestamp":1615507200000},"content-version":"tdm","delay-in-days":0,"URL":"https:\/\/www.emerald.com\/insight\/site-policies"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":["ITP"],"published-print":{"date-parts":[[2022,3,28]]},"abstract":"<jats:sec><jats:title content-type=\"abstract-subheading\">Purpose<\/jats:title><jats:p>Employees\u2019 information security policy (ISP) compliance exerts a significant strain on information security management. Drawing upon the compliance theory and control theory, this study attempts to examine the moderating roles of organizational commitment and gender in the relationships between reward\/punishment expectancy and employees' ISP compliance.<\/jats:p><\/jats:sec><jats:sec><jats:title content-type=\"abstract-subheading\">Design\/methodology\/approach<\/jats:title><jats:p>Using survey data collected from 310 employees in Chinese organizations that have formally adopted information security policies, the authors applied the partial least square method to test hypotheses.<\/jats:p><\/jats:sec><jats:sec><jats:title content-type=\"abstract-subheading\">Findings<\/jats:title><jats:p>Punishment expectancy positively affects ISP compliance, but reward expectancy has no significant impact on ISP compliance. Compared with committed employees, both reward expectancy and punishment expectancy have stronger impacts on low-commitment employees' ISP compliance. As for gender differences, punishment expectancy exerts a stronger effect on females' ISP compliance than it does on males.<\/jats:p><\/jats:sec><jats:sec><jats:title content-type=\"abstract-subheading\">Originality\/value<\/jats:title><jats:p>By investigating the moderating roles of organizational commitment and gender, this paper offers a deeper understanding of reward and punishment in the context of ISP compliance. The findings reveal that efforts in building organizational commitment will reduce the reliance on reward and punishment, and further controls rather than the carrot and stick should be applied to ensure male employees' ISP compliance.<\/jats:p><\/jats:sec>","DOI":"10.1108\/itp-09-2019-0452","type":"journal-article","created":{"date-parts":[[2021,3,12]],"date-time":"2021-03-12T00:34:16Z","timestamp":1615509256000},"page":"802-834","source":"Crossref","is-referenced-by-count":25,"title":["Ensuring employees' information security policy compliance by carrot and stick: the moderating roles of organizational commitment and gender"],"prefix":"10.1108","volume":"35","author":[{"ORCID":"https:\/\/orcid.org\/0000-0003-2419-9862","authenticated-orcid":false,"given":"Chenhui","family":"Liu","sequence":"first","affiliation":[],"role":[{"vocabulary":"crossref","role":"author"}]},{"ORCID":"https:\/\/orcid.org\/0000-0001-6597-4461","authenticated-orcid":false,"given":"Huigang","family":"Liang","sequence":"additional","affiliation":[],"role":[{"vocabulary":"crossref","role":"author"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-6543-1309","authenticated-orcid":false,"given":"Nengmin","family":"Wang","sequence":"additional","affiliation":[],"role":[{"vocabulary":"crossref","role":"author"}]},{"ORCID":"https:\/\/orcid.org\/0000-0001-7199-8662","authenticated-orcid":false,"given":"Yajiong","family":"Xue","sequence":"additional","affiliation":[],"role":[{"vocabulary":"crossref","role":"author"}]}],"member":"140","published-online":{"date-parts":[[2021,3,12]]},"reference":[{"issue":"6","key":"key2022032513084922900_ref001","doi-asserted-by":"crossref","first-page":"476","DOI":"10.1016\/j.cose.2009.01.003","article-title":"The information security digital divide between information security managers and users","volume":"28","year":"2009","journal-title":"Computers and Security"},{"key":"key2022032513084922900_ref002","first-page":"1","article-title":"Employees' behavioural intention to smartphone security: a gender-based, cross-national study","volume":"104","year":"2020","journal-title":"Computers in Human Behavior"},{"issue":"3","key":"key2022032513084922900_ref003","doi-asserted-by":"crossref","first-page":"613","DOI":"10.2307\/25750694","article-title":"Practicing safe computing: a multimedia empirical examination of home computer user security behavioral intentions","volume":"34","year":"2010","journal-title":"MIS Quarterly"},{"key":"key2022032513084922900_ref004","first-page":"1","article-title":"Moral beliefs and organizational information security policy compliance: the role of gender","year":"2016"},{"issue":"1","key":"key2022032513084922900_ref005","doi-asserted-by":"publisher","first-page":"250","DOI":"10.1108\/ITP-03-2019-0109","article-title":"Information system security policy noncompliance: the role of situation-specific ethical orientation","volume":"34","year":"2020","journal-title":"Information Technology and People"},{"issue":"2-3","key":"key2022032513084922900_ref006","doi-asserted-by":"crossref","first-page":"649","DOI":"10.1162\/JEEA.2009.7.2-3.649","article-title":"Gender differences in risk aversion and ambiguity aversion","volume":"7","year":"2009","journal-title":"Journal of the European Economic Association"},{"issue":"2","key":"key2022032513084922900_ref007","doi-asserted-by":"crossref","first-page":"151","DOI":"10.1057\/ejis.2009.8","article-title":"If someone is watching, I'll do what I'm asked: mandatoriness, control, and information security","volume":"18","year":"2009","journal-title":"European Journal of Information Systems"},{"key":"key2022032513084922900_ref008","unstructured":"Brislin, R. (1980), \u201cTranslation and content analysis of oral and written materials\u201d, in Triandis, H.C. and Berry, J.W (Eds), Handbook of Crosscultural Psychology, Allyn & Bacon, Boston, pp. 389-444."},{"issue":"3","key":"key2022032513084922900_ref009","doi-asserted-by":"crossref","first-page":"523","DOI":"10.2307\/25750690","article-title":"Information security policy compliance: an empirical study of rationality-based beliefs and information security awareness","volume":"34","year":"2010","journal-title":"MIS Quarterly"},{"issue":"3","key":"key2022032513084922900_ref010","doi-asserted-by":"crossref","first-page":"18","DOI":"10.1080\/15536548.2005.10855772","article-title":"Perceptions of information security in the workplace: linking information security climate to compliant behavior","volume":"1","year":"2005","journal-title":"Journal of Information Privacy and Security"},{"issue":"2","key":"key2022032513084922900_ref011","doi-asserted-by":"crossref","first-page":"178","DOI":"10.1057\/jibs.2009.88","article-title":"From the Editors: common method variance in international business research","volume":"41","year":"2010","journal-title":"Journal of International Business Studies"},{"key":"key2022032513084922900_ref012","first-page":"442","article-title":"The effects of job satisfaction and organization commitment on information security policy adoption and compliance","year":"2012"},{"issue":"3","key":"key2022032513084922900_ref013","doi-asserted-by":"crossref","first-page":"157","DOI":"10.2753\/MIS0742-1222290305","article-title":"Organizations' information security policy compliance: stick or carrot approach?","volume":"29","year":"2012","journal-title":"Journal of Management Information Systems"},{"issue":"4","key":"key2022032513084922900_ref014","first-page":"973","article-title":"The effects of moral disengagement and organizational ethical climate on insiders' information security policy violation behavior","volume":"32","year":"2018","journal-title":"Information Technology and People"},{"issue":"4","key":"key2022032513084922900_ref015","doi-asserted-by":"crossref","first-page":"312","DOI":"10.1080\/08874417.2016.1258679","article-title":"Factors that influence employees' security policy compliance: an awareness-motivation-capability perspective","volume":"58","year":"2018","journal-title":"Journal of Computer Information Systems"},{"issue":"8","key":"key2022032513084922900_ref016","doi-asserted-by":"crossref","first-page":"1049","DOI":"10.1016\/j.im.2018.05.011","article-title":"Sanction severity and employees' information security policy compliance: investigating mediating, moderating, and control variables","volume":"55","year":"2018","journal-title":"Information and Management"},{"issue":"2","key":"key2022032513084922900_ref017","doi-asserted-by":"crossref","first-page":"189","DOI":"10.1287\/isre.14.2.189.16018","article-title":"A partial least squares latent variable modeling approach for measuring interaction effects: results from a Monte Carlo simulation study and an electronic-mail emotion\/adoption study","volume":"14","year":"2003","journal-title":"Information Systems Research"},{"key":"key2022032513084922900_ref018","unstructured":"Clearswift (2015), \u201cWhat's your employees' price?\u201d, available at: https:\/\/www.clearswift.com\/sites\/default\/files\/documents\/Infographics\/Clearswift_What_is_your_employees_price_infographic_US.PDF (accessed 9 April 2018)."},{"key":"key2022032513084922900_ref019","volume-title":"Applied Multiple Regression\/Correlation Analysis for the Behavioral Sciences","year":"2003","edition":"3rd ed."},{"key":"key2022032513084922900_ref020","volume-title":"Statistical Power Analysis for the Behavioral Sciences","year":"1988","edition":"2nd ed."},{"issue":"3","key":"key2022032513084922900_ref021","doi-asserted-by":"crossref","first-page":"578","DOI":"10.1109\/TEM.2011.2136437","article-title":"Addressing common method variance: guidelines for survey research on information technology, operations, and supply chain management","volume":"58","year":"2011","journal-title":"IEEE Transactions on Engineering Management"},{"issue":"2","key":"key2022032513084922900_ref022","doi-asserted-by":"crossref","first-page":"525","DOI":"10.25300\/MISQ\/2019\/15117","article-title":"Seeing the forest and the trees: a meta-analysis of the antecedents to information security policy compliance","volume":"43","year":"2019","journal-title":"MIS Quarterly"},{"key":"key2022032513084922900_ref023","unstructured":"Cybersecurity Ventures (2018), \u201c2019 official annual cybercrime report\u201d, available at: https:\/\/www.-herjavecgroup.com\/wp-content\/uploads\/2018\/12\/CV-HG-2019-Official-Annual-Cybercrime-Report.pdf (accessed 28 July 2019)."},{"issue":"6","key":"key2022032513084922900_ref024","doi-asserted-by":"crossref","first-page":"1091","DOI":"10.1111\/j.1540-5915.2012.00383.x","article-title":"Employee misuse of information technology resources: testing a contemporary deterrence model","volume":"43","year":"2012","journal-title":"Decision Sciences"},{"issue":"6","key":"key2022032513084922900_ref025","doi-asserted-by":"crossref","first-page":"643","DOI":"10.1057\/ejis.2011.23","article-title":"A review and analysis of deterrence theory in the IS security literature: making sense of the disparate findings","volume":"20","year":"2011","journal-title":"European Journal of Information Systems"},{"issue":"1","key":"key2022032513084922900_ref026","doi-asserted-by":"crossref","first-page":"79","DOI":"10.1287\/isre.1070.0160","article-title":"User awareness of security countermeasures and its impact on information systems misuse: a deterrence approach","volume":"20","year":"2009","journal-title":"Information Systems Research"},{"issue":"3","key":"key2022032513084922900_ref027","doi-asserted-by":"crossref","first-page":"491","DOI":"10.2307\/259291","article-title":"Between trust and control: developing confidence in partner cooperation in alliances","volume":"23","year":"1998","journal-title":"Academy of Management Review"},{"key":"key2022032513084922900_ref028","unstructured":"Deloitte (2019), \u201cThe future of cyber survey 2019\u201d, available at: https:\/\/www2.deloitte.com\/us\/en\/-pages\/advisory\/articles\/future-of-cyber-survey.html (accessed 28 July 2019)."},{"issue":"2","key":"key2022032513084922900_ref029","doi-asserted-by":"crossref","first-page":"348","DOI":"10.1108\/ITP-08-2016-0194","article-title":"Towards a user-centric theory of value-driven information security compliance","volume":"31","year":"2018","journal-title":"Information Technology and People,"},{"key":"key2022032513084922900_ref030","volume-title":"Power and Involvement in Organizations: An Empirical Examination of Etzioni's Compliance Theory","year":"1993"},{"key":"key2022032513084922900_ref031","article-title":"Social role theory of sex differences and similarities: implication for prosocial behavior","volume-title":"Sex Differences and Similarities in Communication","year":"2006"},{"issue":"2","key":"key2022032513084922900_ref032","doi-asserted-by":"crossref","first-page":"134","DOI":"10.1287\/mnsc.31.2.134","article-title":"Control: organizational and economic approaches","volume":"31","year":"1985","journal-title":"Management Science"},{"key":"key2022032513084922900_ref033","volume-title":"A Comparative Analysis of Complex Organizations: On Power, Involvement, and Their Correlates","year":"1975"},{"issue":"2","key":"key2022032513084922900_ref034","doi-asserted-by":"crossref","first-page":"91","DOI":"10.1057\/ejis.2015.9","article-title":"Factors influencing the intention to comply with data protection regulations in hospitals: based on gender differences in behaviour and deterrence","volume":"25","year":"2016","journal-title":"European Journal of Information Systems"},{"issue":"5","key":"key2022032513084922900_ref035","doi-asserted-by":"crossref","first-page":"896","DOI":"10.1080\/09585190801993893","article-title":"Organizational commitment of Chinese employees in foreign-invested firms","volume":"19","year":"2008","journal-title":"International Journal of Human Resource Management"},{"issue":"5","key":"key2022032513084922900_ref036","doi-asserted-by":"crossref","first-page":"1383","DOI":"10.1108\/INTR-06-2019-0260","article-title":"The role of abusive supervision and organizational commitment on employees' information security policy noncompliance intention","volume":"30","year":"2020","journal-title":"Internet Research"},{"key":"key2022032513084922900_ref037","doi-asserted-by":"crossref","first-page":"52","DOI":"10.1016\/j.cose.2016.12.016","article-title":"An integrative model of information security policy compliance with psychological contract: examining a bilateral perspective","volume":"66","year":"2017","journal-title":"Computers and Security"},{"issue":"3","key":"key2022032513084922900_ref038","doi-asserted-by":"crossref","first-page":"629","DOI":"10.1177\/001316448904900315","article-title":"A five-item measure of socially desirable response set","volume":"49","year":"1989","journal-title":"Educational and Psychological Measurement"},{"key":"key2022032513084922900_ref039","volume-title":"Adaptation-level Theory: An Experimental and Systematic Approach to Behavior","year":"1964"},{"issue":"2","key":"key2022032513084922900_ref040","doi-asserted-by":"crossref","first-page":"106","DOI":"10.1057\/ejis.2009.6","article-title":"Protection motivation and deterrence: a framework for security policy compliance in organisations","volume":"18","year":"2009","journal-title":"European Journal of Information Systems"},{"issue":"8","key":"key2022032513084922900_ref041","doi-asserted-by":"crossref","first-page":"1081","DOI":"10.2224\/sbp.2010.38.8.1081","article-title":"Alienation matters: validity and utility of Etzioni's theory of commitment in explaining prosocial organizational behavior","volume":"38","year":"2010","journal-title":"Social Behavior and Personality: An International Journal"},{"issue":"2","key":"key2022032513084922900_ref042","doi-asserted-by":"crossref","first-page":"99","DOI":"10.1016\/j.im.2011.12.005","article-title":"Applying an extended model of deterrence across cultures: an investigation of information systems misuse in the US and South Korea","volume":"49","year":"2012","journal-title":"Information and Management"},{"issue":"2","key":"key2022032513084922900_ref043","doi-asserted-by":"crossref","first-page":"282","DOI":"10.1287\/isre.2015.0569","article-title":"The role of extra-role behaviors and social controls in information security policy effectiveness","volume":"26","year":"2015","journal-title":"Information Systems Research"},{"issue":"4","key":"key2022032513084922900_ref044","doi-asserted-by":"crossref","first-page":"615","DOI":"10.1111\/j.1540-5915.2012.00361.x","article-title":"Managing employee compliance with information security policies: the critical role of top management and organizational culture","volume":"43","year":"2012","journal-title":"Decision Sciences"},{"key":"key2022032513084922900_ref045","doi-asserted-by":"crossref","first-page":"282","DOI":"10.1016\/j.chb.2017.12.022","article-title":"Examining technostress creators and role stress as potential threats to employees' information security compliance","volume":"81","year":"2018","journal-title":"Computers in Human Behavior"},{"issue":"1","key":"key2022032513084922900_ref046","doi-asserted-by":"crossref","first-page":"69","DOI":"10.1016\/j.im.2013.10.001","article-title":"Information systems security policy compliance: an empirical study of the effects of socialisation, influence, and cognition","volume":"51","year":"2014","journal-title":"Information and Management"},{"issue":"1","key":"key2022032513084922900_ref047","doi-asserted-by":"crossref","first-page":"113","DOI":"10.25300\/MISQ\/2015\/39.1.06","article-title":"An enhanced fear appeal rhetorical framework: leveraging threats to the human asset through sanctioning rhetoric","volume":"39","year":"2015","journal-title":"MIS Quarterly"},{"issue":"3","key":"key2022032513084922900_ref048","doi-asserted-by":"crossref","first-page":"633","DOI":"10.1037\/a0021872","article-title":"Fostering good citizenship through ethical leadership: exploring the moderating role of gender and organizational politics","volume":"96","year":"2011","journal-title":"Journal of Applied Psychology"},{"issue":"2","key":"key2022032513084922900_ref049","doi-asserted-by":"crossref","first-page":"299","DOI":"10.2307\/3250940","article-title":"A cross-cultural study on escalation of commitment behavior in software projects","volume":"24","year":"2000","journal-title":"MIS Quarterly"},{"issue":"4","key":"key2022032513084922900_ref050","doi-asserted-by":"crossref","first-page":"858","DOI":"10.1108\/ITP-09-2017-0298","article-title":"Do employees in a \u201cgood\u201d company comply better with information security policy? A corporate social responsibility perspective","volume":"32","year":"2019","journal-title":"Information Technology and People"},{"issue":"5","key":"key2022032513084922900_ref051","first-page":"2","article-title":"Why incentive plans cannot work","volume":"71","year":"1993","journal-title":"Harvard Business Review"},{"issue":"2","key":"key2022032513084922900_ref052","doi-asserted-by":"crossref","first-page":"153","DOI":"10.1016\/0167-2681(88)90071-6","article-title":"A survey of agency models of organizations","volume":"9","year":"1988","journal-title":"Journal of Economic Behavior and Organization"},{"issue":"4","key":"key2022032513084922900_ref053","doi-asserted-by":"crossref","first-page":"635","DOI":"10.1016\/j.dss.2009.12.005","article-title":"Understanding compliance with internet use policy from the perspective of rational choice theory","volume":"48","year":"2010","journal-title":"Decision Support Systems"},{"issue":"3","key":"key2022032513084922900_ref054","doi-asserted-by":"crossref","first-page":"358","DOI":"10.1016\/j.im.2017.09.002","article-title":"Self-control, organizational context, and rational choice in Internet abuses at work","volume":"55","year":"2018","journal-title":"Information and Management"},{"issue":"2","key":"key2022032513084922900_ref055","doi-asserted-by":"crossref","first-page":"279","DOI":"10.1287\/isre.1120.0427","article-title":"Ensuring employees' IT compliance: carrot or stick?","volume":"24","year":"2013","journal-title":"Information Systems Research"},{"key":"key2022032513084922900_ref056","article-title":"Validating a control-based model of information security policy compliance\u2013A meta-analysis","year":"2019"},{"key":"key2022032513084922900_ref057","first-page":"1","article-title":"Motivating information security policy compliance: the critical role of supervisor-subordinate guanxi and organizational commitment","volume":"54","year":"2020","journal-title":"International Journal of Information Management"},{"issue":"1","key":"key2022032513084922900_ref058","first-page":"1","article-title":"Compliance theory and organizational effectiveness","volume":"14","year":"2012","journal-title":"International Journal of scholarly academic intellectual diversity"},{"issue":"2","key":"key2022032513084922900_ref059","doi-asserted-by":"crossref","first-page":"293","DOI":"10.2307\/23044045","article-title":"Construct measurement and validation procedures in MIS and behavioral research: integrating new and existing techniques","volume":"35","year":"2011","journal-title":"MIS Quarterly"},{"key":"key2022032513084922900_ref060","doi-asserted-by":"crossref","first-page":"37","DOI":"10.1016\/j.chb.2018.10.031","article-title":"Examining the impact of deterrence factors and norms on resistance to Information Systems Security","volume":"92","year":"2019","journal-title":"Computers in Human Behavior"},{"key":"key2022032513084922900_ref061","volume-title":"Commitment in the Workplace: Theory, Research, and Application","year":"1997"},{"issue":"6","key":"key2022032513084922900_ref062","doi-asserted-by":"crossref","first-page":"991","DOI":"10.1037\/0021-9010.89.6.991","article-title":"Employee commitment and motivation: a conceptual analysis and integrative model","volume":"89","year":"2004","journal-title":"Journal of Applied Psychology"},{"issue":"1","key":"key2022032513084922900_ref063","doi-asserted-by":"crossref","first-page":"285","DOI":"10.25300\/MISQ\/2018\/13853","article-title":"Toward a unified model of information security policy compliance","volume":"42","year":"2018","journal-title":"MIS Quarterly"},{"issue":"2","key":"key2022032513084922900_ref064","doi-asserted-by":"crossref","first-page":"224","DOI":"10.1016\/0001-8791(79)90072-1","article-title":"The measurement of organizational commitment","volume":"14","year":"1979","journal-title":"Journal of Vocational Behavior"},{"key":"key2022032513084922900_ref065","volume-title":"Employee\u2014Organization Linkages: The Psychology of Commitment, Absenteeism, and Turnover","year":"2013"},{"issue":"2","key":"key2022032513084922900_ref066","doi-asserted-by":"crossref","first-page":"210","DOI":"10.1037\/0033-2909.115.2.210","article-title":"The relation between group cohesiveness and performance: an integration","volume":"115","year":"1994","journal-title":"Psychological Bulletin"},{"key":"key2022032513084922900_ref067","volume-title":"Psychometric Theory","year":"1978"},{"issue":"4","key":"key2022032513084922900_ref068","doi-asserted-by":"crossref","first-page":"775","DOI":"10.1111\/j.1744-6570.1995.tb01781.x","article-title":"A meta\u2010analytic review of attitudinal and dispositional predictors of organizational citizenship behavior","volume":"48","year":"1995","journal-title":"Personnel Psychology"},{"issue":"2","key":"key2022032513084922900_ref069","doi-asserted-by":"crossref","first-page":"172","DOI":"10.2307\/2787068","article-title":"Adaptation-level phenomena and the prevalence of cooperation","volume":"61","year":"1998","journal-title":"Social Psychology Quarterly"},{"key":"key2022032513084922900_ref070","article-title":"Employees' behavior towards IS security policy compliance","year":"2007"},{"issue":"1","key":"key2022032513084922900_ref071","doi-asserted-by":"crossref","first-page":"43","DOI":"10.1002\/job.4030090105","article-title":"Etzioni's model of organizational involvement: a perspective for understanding commitment to organizations","volume":"9","year":"1988","journal-title":"Journal of Organizational Behavior"},{"issue":"5","key":"key2022032513084922900_ref072","doi-asserted-by":"crossref","first-page":"879","DOI":"10.1037\/0021-9010.88.5.879","article-title":"Common method biases in behavioral research: a critical review of the literature and recommended remedies","volume":"88","year":"2003","journal-title":"Journal of Applied Psychology"},{"issue":"4","key":"key2022032513084922900_ref073","doi-asserted-by":"crossref","first-page":"1189","DOI":"10.25300\/MISQ\/2013\/37.4.09","article-title":"Insiders' protection of organizational information assets: development of a systematics-based taxonomy and theory of diversity for protection-motivated behaviors","volume":"37","year":"2013","journal-title":"MIS Quarterly"},{"issue":"4","key":"key2022032513084922900_ref074","doi-asserted-by":"crossref","first-page":"179","DOI":"10.1080\/07421222.2015.1138374","article-title":"The impact of organizational commitment on insiders' motivation to protect organizational information assets","volume":"32","year":"2015","journal-title":"Journal of Management Information Systems"},{"key":"key2022032513084922900_ref075","volume-title":"SmartPLS 3","year":"2015"},{"key":"key2022032513084922900_ref076","article-title":"PLS marker variable approach to diagnosing and controlling for method variance","year":"2011"},{"issue":"3","key":"key2022032513084922900_ref077","doi-asserted-by":"crossref","first-page":"245","DOI":"10.1111\/j.1365-2575.2011.00397.x","article-title":"How does organisational absorptive capacity matter in the assimilation of enterprise information systems?","volume":"23","year":"2013","journal-title":"Information Systems Journal"},{"key":"key2022032513084922900_ref078","first-page":"1","article-title":"Do I really belong?: impact of employment status on information security policy compliance","volume":"87","year":"2019","journal-title":"Computers and Security"},{"issue":"3","key":"key2022032513084922900_ref079","doi-asserted-by":"crossref","first-page":"456","DOI":"10.1177\/1094428109351241","article-title":"Common method bias in regression models with linear, quadratic, and interaction effects","volume":"13","year":"2010","journal-title":"Organizational Research Methods"},{"key":"key2022032513084922900_ref080","first-page":"1","article-title":"Factors influencing protection motivation and IS security policy compliance","year":"2006"},{"issue":"2","key":"key2022032513084922900_ref081","doi-asserted-by":"crossref","first-page":"217","DOI":"10.1016\/j.im.2013.08.006","article-title":"Employees' adherence to information security policies: an exploratory field study","volume":"51","year":"2014","journal-title":"Information and Management"},{"key":"key2022032513084922900_ref082","first-page":"1","article-title":"Gender differences in mobile users' IT security appraisals and protective actions: findings from a mixed-method study","year":"2016"},{"key":"key2022032513084922900_ref083","first-page":"2501","article-title":"Examining the linkage between organizational commitment and information security","volume":"3","year":"2003","journal-title":"IEEE International Conference on Systems, Man and Cybernetics"},{"issue":"3","key":"key2022032513084922900_ref084","doi-asserted-by":"crossref","first-page":"297","DOI":"10.1007\/s11211-008-0072-1","article-title":"How employee race moderates the relationship between non-contingent punishment and organizational citizenship behaviors: a test of the negative adaptation hypothesis","volume":"21","year":"2008","journal-title":"Social Justice Research"},{"issue":"4","key":"key2022032513084922900_ref085","doi-asserted-by":"crossref","first-page":"647","DOI":"10.2307\/258803","article-title":"The social effects of punishment in organizations: a justice perspective","volume":"17","year":"1992","journal-title":"Academy of Management Review"},{"issue":"6","key":"key2022032513084922900_ref086","doi-asserted-by":"crossref","first-page":"1143","DOI":"10.5465\/amj.2005.19573114","article-title":"Can businesses effectively regulate employee conduct? The antecedents of rule following in work settings","volume":"48","year":"2005","journal-title":"Academy of Management Journal"},{"issue":"3-4","key":"key2022032513084922900_ref087","doi-asserted-by":"crossref","first-page":"190","DOI":"10.1016\/j.im.2012.04.002","article-title":"Motivating IS security compliance: insights from habit and protection motivation theory","volume":"49","year":"2012","journal-title":"Information and Management"},{"issue":"3","key":"key2022032513084922900_ref088","first-page":"115","article-title":"Examining gender differences in performance evaluations, rewards and punishments","volume":"6","year":"2006","journal-title":"Journal of Management Research"},{"key":"key2022032513084922900_ref090","doi-asserted-by":"crossref","first-page":"36","DOI":"10.1016\/j.dss.2016.09.009","article-title":"Employees\u2019 information security policy compliance: a norm activation perspective","volume":"92","year":"2016","journal-title":"Decision Support Systems"},{"issue":"5","key":"key2022032513084922900_ref089","first-page":"1","article-title":"Peers matter: the moderating role of social influence on information security policy compliance","volume":"30","year":"2020","journal-title":"Information Systems Journal"}],"container-title":["Information Technology &amp; People"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/www.emerald.com\/insight\/content\/doi\/10.1108\/ITP-09-2019-0452\/full\/xml","content-type":"application\/xml","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/www.emerald.com\/insight\/content\/doi\/10.1108\/ITP-09-2019-0452\/full\/html","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,7,24]],"date-time":"2025-07-24T21:55:33Z","timestamp":1753394133000},"score":1,"resource":{"primary":{"URL":"http:\/\/www.emerald.com\/itp\/article\/35\/2\/802-834\/183143"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2021,3,12]]},"references-count":90,"journal-issue":{"issue":"2","published-online":{"date-parts":[[2021,3,12]]},"published-print":{"date-parts":[[2022,3,28]]}},"alternative-id":["10.1108\/ITP-09-2019-0452"],"URL":"https:\/\/doi.org\/10.1108\/itp-09-2019-0452","relation":{},"ISSN":["0959-3845"],"issn-type":[{"value":"0959-3845","type":"print"}],"subject":[],"published":{"date-parts":[[2021,3,12]]}}}