{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,2,14]],"date-time":"2026-02-14T03:03:05Z","timestamp":1771038185233,"version":"3.50.1"},"reference-count":106,"publisher":"Emerald","issue":"1","license":[{"start":{"date-parts":[[2019,9,23]],"date-time":"2019-09-23T00:00:00Z","timestamp":1569196800000},"content-version":"tdm","delay-in-days":0,"URL":"https:\/\/www.emerald.com\/insight\/site-policies"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":["JEIM"],"published-print":{"date-parts":[[2019,9,23]]},"abstract":"<jats:sec><jats:title content-type=\"abstract-subheading\">Purpose<\/jats:title><jats:p>This paper is to investigate how employees respond to information security policies (ISPs) when they view the policies as a challenge rather than a hindrance to work. Specifically, the authors examine the roles of challenge security demands (i.e. continuity and mandatory) and psychological resources (i.e. personal and job resources) in influencing employees\u2019 ISP non-compliance.<\/jats:p><\/jats:sec><jats:sec><jats:title content-type=\"abstract-subheading\">Design\/methodology\/approach<\/jats:title><jats:p>Applying a hypothetical scenario-based survey method, the authors tested our proposed model in six typical ISPs violation scenarios. In sum, 347 responses were collected from a global company. The data were analyzed using partial least square-based structural equation model.<\/jats:p><\/jats:sec><jats:sec><jats:title content-type=\"abstract-subheading\">Findings<\/jats:title><jats:p>Findings indicated that continuity and mandatory demands increased employees\u2019 level of perseverance of effort, which, in turn, decreased their ISPs non-compliance intention. In addition, job resources, such as the trust enhancement gained from co-workers and the opportunities for professional development, enhanced the perseverance of effort.<\/jats:p><\/jats:sec><jats:sec><jats:title content-type=\"abstract-subheading\">Practical implications<\/jats:title><jats:p>The findings offer implications to practice by suggesting that organizations should design training programs to persuade employees to understand the ISPs in a positive way. Meanwhile, organizations should encourage employees to invest more personal resources by creating a trusting atmosphere and providing them opportunities to learn security knowledge and skills.<\/jats:p><\/jats:sec><jats:sec><jats:title content-type=\"abstract-subheading\">Originality\/value<\/jats:title><jats:p>This study is among the few to empirically explore how employees respond and behave when they view the security policies as challenge stressors. The paper also provides a novel understanding of how psychological resources contribute to buffering ISP non-compliance.<\/jats:p><\/jats:sec>","DOI":"10.1108\/jeim-01-2019-0018","type":"journal-article","created":{"date-parts":[[2019,10,1]],"date-time":"2019-10-01T06:25:38Z","timestamp":1569911138000},"page":"191-213","source":"Crossref","is-referenced-by-count":12,"title":["From hindrance to challenge"],"prefix":"10.1108","volume":"33","author":[{"given":"Ying","family":"Li","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Ting","family":"Pan","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Nan (Andy)","family":"Zhang","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"140","reference":[{"key":"key2020012215054515300_ref001","doi-asserted-by":"crossref","first-page":"437","DOI":"10.1016\/j.chb.2016.12.040","article-title":"Gender difference and employees\u2019 cybersecurity behaviors","volume":"69","year":"2017","journal-title":"Computers in Human Behavior"},{"issue":"3","key":"key2020012215054515300_ref002","doi-asserted-by":"crossref","first-page":"713","DOI":"10.25300\/MISQ\/2015\/39.3.10","article-title":"Exhaustion from information system career experience: implications for turn-away intention","volume":"39","year":"2015","journal-title":"MIS Quarterly"},{"issue":"3","key":"key2020012215054515300_ref003","doi-asserted-by":"crossref","first-page":"309","DOI":"10.1108\/02683940710733115","article-title":"The job demands-resources model: state of the art","volume":"22","year":"2007","journal-title":"Journal of Managerial Psychology"},{"issue":"2","key":"key2020012215054515300_ref004","doi-asserted-by":"crossref","first-page":"341","DOI":"10.1016\/S0001-8791(02)00030-1","article-title":"Job demands and job resources as predictors of absence duration and frequency","volume":"62","year":"2003","journal-title":"Journal of Vocational Behavior"},{"issue":"2","key":"key2020012215054515300_ref006","doi-asserted-by":"crossref","first-page":"274","DOI":"10.1037\/0022-0663.99.2.274","article-title":"Job resources boost work engagement, particularly when job demands are high","volume":"99","year":"2007","journal-title":"Journal of Educational Psychology"},{"issue":"1","key":"key2020012215054515300_ref005","doi-asserted-by":"crossref","first-page":"16","DOI":"10.1037\/1072-5245.10.1.16","article-title":"A multigroup analysis of the job demands-resources model in four home care organizations","volume":"10","year":"2003","journal-title":"International Journal of Stress Management"},{"issue":"4","key":"key2020012215054515300_ref007","doi-asserted-by":"crossref","first-page":"366","DOI":"10.1037\/0003-066X.52.4.366","article-title":"On the incomplete architecture of human ontogeny: selection, optimization, and compensation as foundation of developmental theory","volume":"52","year":"1997","journal-title":"American Psychologist"},{"key":"key2020012215054515300_ref008","doi-asserted-by":"crossref","first-page":"237","DOI":"10.1016\/j.cose.2013.08.001","article-title":"An adaptive risk management and access control framework to mitigate insider threats","volume":"39","year":"2013","journal-title":"Computers & Security"},{"key":"key2020012215054515300_ref009","volume-title":"Exchange and Power in Social Life","year":"1964"},{"issue":"2","key":"key2020012215054515300_ref010","doi-asserted-by":"crossref","first-page":"151","DOI":"10.1057\/ejis.2009.8","article-title":"If someone is watching, I\u2019ll do what I\u2019m asked: mandatoriness, control, and information security","volume":"18","year":"2009","journal-title":"European Journal of Information Systems"},{"issue":"1","key":"key2020012215054515300_ref011","doi-asserted-by":"crossref","first-page":"1","DOI":"10.2307\/3250956","article-title":"Validation in information systems research: a state-of-the-art assessment","volume":"25","year":"2001","journal-title":"MIS Quarterly"},{"issue":"1","key":"key2020012215054515300_ref012","doi-asserted-by":"crossref","first-page":"72","DOI":"10.1177\/0894486513508980","article-title":"Researching long-term orientation: a validation study and recommendations for future research","volume":"27","year":"2014","journal-title":"Family Business Review"},{"issue":"3","key":"key2020012215054515300_ref013","doi-asserted-by":"crossref","first-page":"523","DOI":"10.2307\/25750690","article-title":"Information security policy compliance: an empirical study of rationality-based beliefs and information security awareness","volume":"34","year":"2010","journal-title":"MIS Quarterly"},{"key":"key2020012215054515300_ref014","doi-asserted-by":"crossref","first-page":"190","DOI":"10.1016\/j.chb.2016.11.018","article-title":"Examining the relationship of organizational insiders\u2019 psychological capital with information security threat and coping appraisals","volume":"68","year":"2017","journal-title":"Computers in Human Behavior"},{"key":"key2020012215054515300_ref015","unstructured":"Carver, C.S. and Scheier, M.F. (1999), \u201cStress, coping, and self-regulatory processes\u201d, in Pervin, L.A. and John, O.P. (Eds), Handbook of Personality: Theory and Research, Guilford Press, New York, NY, pp. 553-575."},{"issue":"1","key":"key2020012215054515300_ref016","doi-asserted-by":"crossref","first-page":"65","DOI":"10.1037\/0021-9010.85.1.65","article-title":"An empirical examination of self-reported work stress among U.S. managers","volume":"85","year":"2000","journal-title":"Journal of Applied Psychology"},{"issue":"4","key":"key2020012215054515300_ref017","doi-asserted-by":"crossref","first-page":"49","DOI":"10.1080\/07421222.2014.1001257","article-title":"The behavioral roots of information systems security: exploring key factors related to unethical IT use","volume":"31","year":"2015","journal-title":"Journal of Management Information Systems"},{"issue":"3","key":"key2020012215054515300_ref018","doi-asserted-by":"crossref","first-page":"157","DOI":"10.2753\/MIS0742-1222290305","article-title":"Organizations\u2019 information security policy compliance: stick or carrot approach?","volume":"29","year":"2012","journal-title":"Journal of Management Information Systems"},{"issue":"1","key":"key2020012215054515300_ref019","first-page":"Vii","article-title":"Issues and opinion on structural equation modeling","volume":"22","year":"1998","journal-title":"MIS Quarterly"},{"issue":"5","key":"key2020012215054515300_ref020","doi-asserted-by":"crossref","first-page":"834","DOI":"10.1037\/a0019364","article-title":"Linking job demands and resources to employee engagement and burnout: a theoretical extension and meta-analytic test","volume":"95","year":"2010","journal-title":"Journal of Applied Psychology"},{"issue":"6","key":"key2020012215054515300_ref021","doi-asserted-by":"crossref","first-page":"643","DOI":"10.1057\/ejis.2011.23","article-title":"A review and analysis of deterrence theory in the IS security literature: making sense of the disparate findings","volume":"20","year":"2011","journal-title":"European Journal of Information Systems"},{"issue":"2","key":"key2020012215054515300_ref022","doi-asserted-by":"crossref","first-page":"285","DOI":"10.2753\/MIS0742-1222310210","article-title":"Understanding employee responses to stressful information security requirements: a coping perspective","volume":"31","year":"2014","journal-title":"Journal of Management Information Systems"},{"issue":"1","key":"key2020012215054515300_ref023","doi-asserted-by":"crossref","first-page":"79","DOI":"10.1287\/isre.1070.0160","article-title":"User awareness of security countermeasures and its impact on information systems misuse: a deterrence approach","volume":"20","year":"2009","journal-title":"Information Systems Research"},{"key":"key2020012215054515300_ref024","doi-asserted-by":"crossref","first-page":"196","DOI":"10.1016\/j.chb.2016.10.025","article-title":"Why employees share information security advice? Exploring the contributing factors and structural patterns of security advice sharing in the workplace","volume":"67","year":"2017","journal-title":"Computers in Human Behavior"},{"issue":"2","key":"key2020012215054515300_ref025","first-page":"69","article-title":"Time and entrepreneurial risk behavior","volume":"22","year":"1997","journal-title":"Entrepreneurship Theory and Practice"},{"key":"key2020012215054515300_ref026","unstructured":"Deloitte (2013), \u201cBlurring the lines: 2013 TMT global security study\u201d, available at: www2.deloitte.com\/content\/dam\/Deloitte\/global\/Documents\/Technology-Media-Telecommunications\/dttl_TMT_GlobalSecurityStudy_English_final_020113.pdf (accessed April 23, 2015)."},{"issue":"3","key":"key2020012215054515300_ref028","doi-asserted-by":"crossref","first-page":"499","DOI":"10.1037\/0021-9010.86.3.499","article-title":"The job demands-resources model of burnout","volume":"86","year":"2001","journal-title":"Journal of Applied Psychology"},{"issue":"4","key":"key2020012215054515300_ref027","doi-asserted-by":"crossref","first-page":"279","DOI":"10.5271\/sjweh.615","article-title":"Burnout and engagement at work as a function of demands and control","volume":"27","year":"2001","journal-title":"Scandinavian Journal of Work, Environment & Health"},{"issue":"6","key":"key2020012215054515300_ref029","doi-asserted-by":"crossref","first-page":"1087","DOI":"10.1037\/0022-3514.92.6.1087","article-title":"Grit: perseverance and passion for long-term goals","volume":"92","year":"2007","journal-title":"Journal of Personality and Social Psychology"},{"key":"key2020012215054515300_ref030","unstructured":"Dunckel, H. (2002), \u201cJob analysis and work roles\u201d, in Smelser, N.J. and Baltes, P.B. (Eds), International Encyclopedia of the Social and Behavioral Sciences, Elsevier, London, pp. 7973-7977."},{"issue":"3","key":"key2020012215054515300_ref031","doi-asserted-by":"crossref","first-page":"382","DOI":"10.1177\/002224378101800313","article-title":"Structural equation models with unobservable variables and measurement error: algebra and statistics","volume":"18","year":"1981","journal-title":"Journal of Marketing Research"},{"issue":"1","key":"key2020012215054515300_ref032","first-page":"91","article-title":"A practical guide to factorial validity using PLS-graph: tutorial and annotated example","volume":"16","year":"2005","journal-title":"Communications of the Association for Information Systems"},{"issue":"4","key":"key2020012215054515300_ref033","doi-asserted-by":"crossref","first-page":"426","DOI":"10.1002\/smi.2726","article-title":"Mindfulness as a personal resource to reduce work stress in the job demands-resources model","volume":"33","year":"2017","journal-title":"Stress and Health"},{"issue":"2","key":"key2020012215054515300_ref034","doi-asserted-by":"crossref","first-page":"154","DOI":"10.1016\/j.dss.2009.02.005","article-title":"Encouraging information security behaviors in organizations: role of penalties, pressures and perceived effectiveness","volume":"47","year":"2009","journal-title":"Decision Support Systems"},{"issue":"2","key":"key2020012215054515300_ref035","doi-asserted-by":"crossref","first-page":"106","DOI":"10.1057\/ejis.2009.6","article-title":"Protection motivation and deterrence: a framework for security policy compliance in organizations","volume":"18","year":"2009","journal-title":"European Journal of Information Systems"},{"issue":"2","key":"key2020012215054515300_ref036","doi-asserted-by":"crossref","first-page":"298","DOI":"10.1016\/j.obhdp.2011.11.002","article-title":"Short horizons and tempting situations: lack of continuity to our future selves leads to unethical decision making and behavior","volume":"117","year":"2012","journal-title":"Organizational Behavior and Human Decision Processes"},{"key":"key2020012215054515300_ref037","volume-title":"Stress, Culture, and Community: The Psychology and Philosophy of Stress","year":"1998"},{"issue":"3","key":"key2020012215054515300_ref038","doi-asserted-by":"crossref","first-page":"337","DOI":"10.1111\/1464-0597.00062","article-title":"The influence of culture, community, and the nested-self in the stress process: advancing conservation of resources theory","volume":"50","year":"2001","journal-title":"Applied Psychology"},{"issue":"4","key":"key2020012215054515300_ref039","doi-asserted-by":"crossref","first-page":"307","DOI":"10.1037\/1089-2680.6.4.307","article-title":"Social and psychological resources and adaptation,","volume":"6","year":"2002","journal-title":"Review of General Psychology"},{"issue":"3","key":"key2020012215054515300_ref040","doi-asserted-by":"crossref","first-page":"632","DOI":"10.1037\/0022-3514.84.3.632","article-title":"Resource loss, resource gain, and emotional outcomes among inner city women","volume":"84","year":"2003","journal-title":"Journal of Personality and Social Psychology"},{"issue":"2","key":"key2020012215054515300_ref041","doi-asserted-by":"crossref","first-page":"99","DOI":"10.1016\/j.im.2011.12.005","article-title":"Applying an extended model of deterrence across cultures: an investigation of information systems misuse in the US and South Korea","volume":"49","year":"2012","journal-title":"Information and Management"},{"issue":"2","key":"key2020012215054515300_ref042","doi-asserted-by":"crossref","first-page":"282","DOI":"10.1287\/isre.2015.0569","article-title":"The role of extra-role behaviors and social controls in information security policy effectiveness","volume":"26","year":"2015","journal-title":"Information Systems Research"},{"key":"key2020012215054515300_ref043","doi-asserted-by":"crossref","first-page":"282","DOI":"10.1016\/j.chb.2017.12.022","article-title":"Examining technostress creators and role stress as potential threats to employees\u2019 information security compliance","volume":"81","year":"2018","journal-title":"Computers in Human Behavior"},{"issue":"1","key":"key2020012215054515300_ref044","doi-asserted-by":"crossref","first-page":"2","DOI":"10.1108\/OIR-11-2015-0358","article-title":"Why not comply with information security? An empirical approach for the causes of non-compliance","volume":"41","year":"2017","journal-title":"Online Information Review"},{"issue":"1","key":"key2020012215054515300_ref045","first-page":"1","article-title":"Fear appeals and information security behaviors: an empirical study","volume":"34","year":"2010","journal-title":"MIS Quarterly"},{"issue":"1","key":"key2020012215054515300_ref046","doi-asserted-by":"crossref","first-page":"113","DOI":"10.25300\/MISQ\/2015\/39.1.06","article-title":"An enhanced fear appeal rhetorical framework: leveraging threats to the human asset through sanctioning rhetoric","volume":"39","year":"2015","journal-title":"MIS Quarterly"},{"issue":"3","key":"key2020012215054515300_ref047","doi-asserted-by":"crossref","first-page":"231","DOI":"10.1057\/ejis.2015.15","article-title":"Dispositional and situational factors: influences on information security policy violations","volume":"25","year":"2016","journal-title":"European Journal of Information Systems"},{"issue":"4","key":"key2020012215054515300_ref048","doi-asserted-by":"crossref","first-page":"692","DOI":"10.2307\/256287","article-title":"Psychological conditions of personal engagement and disengagement at work","volume":"33","year":"1990","journal-title":"Academy of Management Journal"},{"key":"key2020012215054515300_ref049","volume-title":"Healthy Work: Stress, Productivity, and the Reconstruction of Working Life","year":"1990"},{"issue":"8","key":"key2020012215054515300_ref050","doi-asserted-by":"crossref","first-page":"518","DOI":"10.17705\/1jais.00274","article-title":"Toward a new meta-theory for designing information systems (IS) security training approaches","volume":"12","year":"2011","journal-title":"Journal of the Association for Information Systems"},{"key":"key2020012215054515300_ref051","volume-title":"Foundations of Behavioral Research","year":"1986"},{"issue":"3","key":"key2020012215054515300_ref052","doi-asserted-by":"crossref","first-page":"557","DOI":"10.2307\/3069370","article-title":"The impact of cultural values on job satisfaction and organizational commitment in self-managing work teams: the mediating role of employee resistance","volume":"44","year":"2001","journal-title":"Academy of Management Journal"},{"issue":"2","key":"key2020012215054515300_ref053","first-page":"112","article-title":"Examining the effects of feeling trusted by supervisors in the workplace: a self-evaluative perspective","volume":"35","year":"2014","journal-title":"Journal of Organizational Behavior"},{"key":"key2020012215054515300_ref054","unstructured":"Lazarus, R.S. and Folkman, S. (1984), \u201cCoping and adaptation\u201d, in Coelho, G.V., Hamburg, D.A. and Adams, J.E. (Eds), The Handbook of Behavioral Medicine, Basic Books, New York, NY, pp. 282-325."},{"key":"key2020012215054515300_ref055","doi-asserted-by":"crossref","first-page":"60","DOI":"10.1016\/j.cose.2016.02.004","article-title":"Understanding information security stress: focusing on the type of information security compliance activity","volume":"59","year":"2016","journal-title":"Computers & Security"},{"issue":"5","key":"key2020012215054515300_ref056","doi-asserted-by":"crossref","first-page":"764","DOI":"10.5465\/amj.2005.18803921","article-title":"A meta-analytic test of the challenge stressor-hindrance stressor framework: an explanation for inconsistent relationships among stressors and performance","volume":"48","year":"2005","journal-title":"Academy of Management Journal"},{"issue":"2","key":"key2020012215054515300_ref057","doi-asserted-by":"crossref","first-page":"17","DOI":"10.1177\/107179190301000203","article-title":"In the eyes of the beholder: the relationship between subordinates\u2019 felt trustworthiness and their work attitudes and behaviors","volume":"10","year":"2003","journal-title":"Journal of Leadership and Organizational Studies"},{"issue":"3","key":"key2020012215054515300_ref058","doi-asserted-by":"crossref","first-page":"358","DOI":"10.1016\/j.im.2017.09.002","article-title":"Self-control, organizational context, and rational choice in Internet abuses at work","volume":"55","year":"2018","journal-title":"Information & Management"},{"key":"key2020012215054515300_ref059","doi-asserted-by":"crossref","first-page":"13","DOI":"10.1016\/j.ijinfomgt.2018.10.017","article-title":"Investigating the impact of cybersecurity policy awareness on employees\u2019 cybersecurity behavior","volume":"45","year":"2019","journal-title":"International Journal of Information Management"},{"issue":"2","key":"key2020012215054515300_ref060","doi-asserted-by":"crossref","first-page":"279","DOI":"10.1287\/isre.1120.0427","article-title":"Ensuring employees\u2019 IT compliance: carrot or stick?","volume":"24","year":"2013","journal-title":"Information Systems Research"},{"issue":"5","key":"key2020012215054515300_ref061","doi-asserted-by":"crossref","first-page":"433","DOI":"10.1111\/isj.12043","article-title":"Proposing the control-reactance compliance model (CRCM) to explain opposing motivations to comply with organizational information security policies","volume":"25","year":"2015","journal-title":"Information Systems Journal"},{"issue":"6","key":"key2020012215054515300_ref062","doi-asserted-by":"crossref","first-page":"1149","DOI":"10.1111\/j.1540-6520.2011.00495.x","article-title":"Long-term orientation and intertemporal choice in family firms","volume":"35","year":"2011","journal-title":"Entrepreneurship Theory and Practice"},{"key":"key2020012215054515300_ref063","doi-asserted-by":"crossref","first-page":"151","DOI":"10.1016\/j.chb.2016.11.065","article-title":"Individual differences and information security awareness","volume":"69","year":"2017","journal-title":"Computers in Human Behavior"},{"issue":"1","key":"key2020012215054515300_ref064","doi-asserted-by":"crossref","first-page":"3","DOI":"10.1111\/j.1754-9434.2007.0002.x","article-title":"The meaning of employee engagement","volume":"1","year":"2008","journal-title":"Industrial and Organizational Psychology"},{"issue":"1","key":"key2020012215054515300_ref300","doi-asserted-by":"crossref","first-page":"267","DOI":"10.2753\/MIS0742-1222250110","article-title":"How endogenous motivations influence user intentions: beyond the dichotomy of extrinsic and intrinsic user motivations","volume":"25","year":"2008","journal-title":"Journal of Management Information Systems"},{"key":"key2020012215054515300_ref105","first-page":"37","article-title":"Examining the impact of deterrence factors and norms on resistance to information systems security","volume":"92","year":"2018","journal-title":"Computers in Human Behavior"},{"key":"key2020012215054515300_ref065","doi-asserted-by":"crossref","unstructured":"Merriman, K.K. (2017), \u201cLeadership and perseverance\u201d, in Marques, J. and Dhiman, S. (Eds), Leadership Today, Springer, New York, NY, pp. 335-350.","DOI":"10.1007\/978-3-319-31036-7_19"},{"issue":"1","key":"key2020012215054515300_ref066","first-page":"232","article-title":"Perspiration and inspiration: grit and innovativeness as antecedents of entrepreneurial success","volume":"56","year":"2016","journal-title":"Journal of Economic Psychology"},{"issue":"3","key":"key2020012215054515300_ref067","doi-asserted-by":"crossref","first-page":"467","DOI":"10.2307\/3054102","article-title":"Enduring individual differences and rational choice theories of crime","volume":"27","year":"1993","journal-title":"Law and Society Review"},{"issue":"4","key":"key2020012215054515300_ref068","doi-asserted-by":"crossref","first-page":"865","DOI":"10.1111\/j.1745-9125.2001.tb00943.x","article-title":"Integrating celerity, impulsivity, and extralegal sanction threats into a model of general deterrence and evidence","volume":"39","year":"2001","journal-title":"Criminology"},{"key":"key2020012215054515300_ref069","first-page":"156","article-title":"Employees\u2019 behavior towards IS security policy compliance","year":"2007"},{"issue":"3","key":"key2020012215054515300_ref070","doi-asserted-by":"crossref","first-page":"166","DOI":"10.1108\/13665621011028611","article-title":"Can an opportunity to learn at work reduce stress? A revisitation of the job demand-control model","volume":"22","year":"2010","journal-title":"Journal of Workplace Learning"},{"issue":"4","key":"key2020012215054515300_ref071","doi-asserted-by":"crossref","first-page":"623","DOI":"10.2307\/25148814","article-title":"Specifying formative constructs in information systems research","volume":"31","year":"2007","journal-title":"MIS Quarterly"},{"issue":"4","key":"key2020012215054515300_ref072","doi-asserted-by":"crossref","first-page":"326","DOI":"10.1108\/ICS-10-2014-0067","article-title":"Stress-based security compliance model-an exploratory study","volume":"24","year":"2016","journal-title":"Information and Computer Security"},{"issue":"1","key":"key2020012215054515300_ref073","first-page":"24","article-title":"When computer monitoring backfires: invasion of privacy and organizational injustice as precursors to computer abuse","volume":"7","year":"2011","journal-title":"Journal of Information System Security"},{"key":"key2020012215054515300_ref074","unstructured":"PWC (2017), \u201cThe global state of information security survey: strengthening digital society against cyber shocks\u201d, available at: www.pwc.com\/us\/en\/cybersecurity\/information-security-survey\/strengthening-digital-society-against-cyber-shocks.html (accessed November 23, 2018)."},{"issue":"2","key":"key2020012215054515300_ref075","doi-asserted-by":"crossref","first-page":"61","DOI":"10.1007\/s12599-012-0207-7","article-title":"Technostress from a neurobiological perspective: system breakdown increases the stress hormone cortisol in computer users","volume":"4","year":"2012","journal-title":"Business & Information Systems Engineering"},{"issue":"1","key":"key2020012215054515300_ref076","first-page":"3","article-title":"A critical look at the use of PLS-SEM in MIS quarterly","volume":"36","year":"2012","journal-title":"MIS Quarterly"},{"key":"key2020012215054515300_ref077","unstructured":"Ringle, C.M., Wende, S. and Becker, J.-M. (2015), \u201cSmartPLS 3. B\u00f6nningstedt: SmartPLS\u201d, available at: www.smartpls.com (accessed December 23, 2018)."},{"issue":"3","key":"key2020012215054515300_ref078","doi-asserted-by":"crossref","first-page":"235","DOI":"10.1037\/1072-5245.10.3.235","article-title":"Optimism and coping as moderators of the relation between work resources and burnout in information service workers","volume":"10","year":"2003","journal-title":"International Journal of Stress Management"},{"key":"key2020012215054515300_ref079","doi-asserted-by":"crossref","first-page":"70","DOI":"10.1016\/j.cose.2015.10.006","article-title":"Information security policy compliance model in organizations","volume":"56","year":"2016","journal-title":"Computers & Security"},{"issue":"3","key":"key2020012215054515300_ref080","doi-asserted-by":"crossref","first-page":"293","DOI":"10.1002\/job.248","article-title":"Job demands, job resources, and their relationship with burnout and engagement: a multi-sample study,","volume":"25","year":"2004","journal-title":"Journal of Organizational Behavior"},{"issue":"2","key":"key2020012215054515300_ref081","doi-asserted-by":"crossref","first-page":"121","DOI":"10.1080\/10615806.2014.931378","article-title":"The merits of measuring challenge and hindrance appraisals","volume":"28","year":"2015","journal-title":"Anxiety, Stress, and Coping"},{"issue":"1","key":"key2020012215054515300_ref082","doi-asserted-by":"crossref","first-page":"99","DOI":"10.1177\/014920630102700106","article-title":"Struggling for balance amid turbulence on international assignments: work-family conflict, support and commitment","volume":"27","year":"2001","journal-title":"Journal of Management"},{"key":"key2020012215054515300_ref083","doi-asserted-by":"crossref","first-page":"177","DOI":"10.1016\/j.cose.2015.01.002","article-title":"Personality, attitudes, and intentions: predicting initial adoption of information security behavior","volume":"49","year":"2015","journal-title":"Computers & Security"},{"issue":"3","key":"key2020012215054515300_ref084","doi-asserted-by":"crossref","first-page":"487","DOI":"10.2307\/25750688","article-title":"Neutralization: new insights into the problem of employee information systems security policy violations,","volume":"34","year":"2010","journal-title":"MIS Quarterly"},{"issue":"6","key":"key2020012215054515300_ref085","doi-asserted-by":"crossref","first-page":"351","DOI":"10.17705\/1jais.00093","article-title":"How low should you go? Low response rates and the validity of inference in IS questionnaire research","volume":"7","year":"2006","journal-title":"Journal of the Association for Information Systems"},{"issue":"3","key":"key2020012215054515300_ref086","doi-asserted-by":"crossref","first-page":"309","DOI":"10.1016\/j.ijinfomgt.2015.12.005","article-title":"Procedural justice to enhance compliance with non-work-related computing (NWRC) rules: its determinants and interaction with privacy concerns","volume":"36","year":"2016","journal-title":"International Journal of Information Management"},{"issue":"1","key":"key2020012215054515300_ref087","doi-asserted-by":"crossref","first-page":"51","DOI":"10.1287\/orsc.5.1.51","article-title":"Employee positive emotion and favorable outcomes at the workplace","volume":"5","year":"1994","journal-title":"Organization Science"},{"issue":"11","key":"key2020012215054515300_ref088","doi-asserted-by":"crossref","first-page":"1161","DOI":"10.1037\/0003-066X.38.11.1161","article-title":"Adjustment to threatening events: a theory of cognitive adaptation","volume":"38","year":"1983","journal-title":"American Psychologist"},{"issue":"1","key":"key2020012215054515300_ref089","doi-asserted-by":"crossref","first-page":"99","DOI":"10.1037\/0003-066X.55.1.99","article-title":"Psychological resources, positive illusions, and health","volume":"55","year":"2000","journal-title":"American Psychologist"},{"issue":"2","key":"key2020012215054515300_ref090","first-page":"10","article-title":"The job demands-resources model: further evidence for the buffering effect of personal resources","volume":"37","year":"2011","journal-title":"SA Journal of Industrial Psychology"},{"issue":"1","key":"key2020012215054515300_ref091","doi-asserted-by":"crossref","first-page":"51","DOI":"10.1002\/hrm.21758","article-title":"The impact of personal resources and job crafting interventions on work engagement and performance","volume":"56","year":"2017","journal-title":"Human Resource Management"},{"issue":"3-4","key":"key2020012215054515300_ref092","doi-asserted-by":"crossref","first-page":"190","DOI":"10.1016\/j.im.2012.04.002","article-title":"Motivating is security compliance: insights from habit and protection motivation theory","volume":"49","year":"2012","journal-title":"Information and Management"},{"issue":"2","key":"key2020012215054515300_ref093","doi-asserted-by":"crossref","first-page":"345","DOI":"10.25300\/MISQ\/2015\/39.2.04","article-title":"Increasing accountability through user-interface design artifacts: a new approach to addressing the problem of access-policy violations","volume":"39","year":"2015","journal-title":"MIS Quarterly"},{"issue":"1","key":"key2020012215054515300_ref094","first-page":"39","article-title":"Secure behavior over time: perspectives from the theory of process memory","volume":"49","year":"2018","journal-title":"Information Science & Library Science"},{"issue":"3","key":"key2020012215054515300_ref095","first-page":"277","article-title":"Professional self-efficacy as a predictor of burnout and engagement: the role of challenge and hindrance demands","volume":"149","year":"2014","journal-title":"The Journal of Psychology"},{"issue":"1","key":"key2020012215054515300_ref096","doi-asserted-by":"crossref","first-page":"91","DOI":"10.25300\/MISQ\/2015\/39.1.05","article-title":"Insider threats in a financial institution: analysis of attack-proneness of information systems applications","volume":"39","year":"2015","journal-title":"MIS Quarterly"},{"issue":"3","key":"key2020012215054515300_ref097","doi-asserted-by":"crossref","first-page":"194","DOI":"10.17705\/1jais.00424","article-title":"Neural correlates of protection motivation for secure IT behaviors: an fMRI examination","volume":"17","year":"2016","journal-title":"Journal of the Association for Information Systems"},{"issue":"2","key":"key2020012215054515300_ref098","doi-asserted-by":"crossref","first-page":"137","DOI":"10.2307\/3857568","article-title":"Scenarios in business ethics research: review, critical assessment, and recommendations","volume":"2","year":"1992","journal-title":"Business Ethics Quarterly"},{"issue":"2","key":"key2020012215054515300_ref099","doi-asserted-by":"crossref","first-page":"505","DOI":"10.1016\/j.jvb.2011.02.001","article-title":"Extending the challenge-hindrance model of occupational stress: the role of appraisal","volume":"79","year":"2011","journal-title":"Journal of Vocational Behavior"},{"issue":"1","key":"key2020012215054515300_ref100","doi-asserted-by":"crossref","first-page":"177","DOI":"10.2307\/20650284","article-title":"Using PLS path modeling for assessing hierarchical construct models: guidelines and empirical illustration","volume":"33","year":"2009","journal-title":"MIS Quarterly"},{"issue":"2","key":"key2020012215054515300_ref101","doi-asserted-by":"crossref","first-page":"266","DOI":"10.1111\/isj.12129","article-title":"Examining employee computer abuse intentions: insights from justice, deterrence and neutralization perspectives","volume":"28","year":"2018","journal-title":"Information Systems Journal"},{"issue":"4","key":"key2020012215054515300_ref102","doi-asserted-by":"crossref","first-page":"345","DOI":"10.1037\/1076-8998.13.4.345","article-title":"Working in the sky: a diary study on work engagement among flight attendants","volume":"13","year":"2008","journal-title":"Journal of Occupational Health Psychology"},{"issue":"1","key":"key2020012215054515300_ref103","doi-asserted-by":"crossref","first-page":"69","DOI":"10.1016\/j.im.2013.10.001","article-title":"Information systems security policy compliance: an empirical study of the effects of socialisation, influence, and cognition","volume":"51","year":"2014","journal-title":"Information & Management"},{"issue":"1","key":"key2020012215054515300_ref104","doi-asserted-by":"crossref","first-page":"64","DOI":"10.1016\/j.ijinfomgt.2017.07.001","article-title":"Understanding mandatory is use behavior: how outcome expectations affect conative is use","volume":"38","year":"2018","journal-title":"International Journal of Information Management"}],"container-title":["Journal of Enterprise Information Management"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/www.emerald.com\/insight\/content\/doi\/10.1108\/JEIM-01-2019-0018\/full\/xml","content-type":"application\/xml","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/www.emerald.com\/insight\/content\/doi\/10.1108\/JEIM-01-2019-0018\/full\/html","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,7,24]],"date-time":"2025-07-24T22:30:38Z","timestamp":1753396238000},"score":1,"resource":{"primary":{"URL":"http:\/\/www.emerald.com\/jeim\/article\/33\/1\/191-213\/198019"}},"subtitle":["How employees understand and respond to information security policies"],"short-title":[],"issued":{"date-parts":[[2019,9,23]]},"references-count":106,"journal-issue":{"issue":"1","published-print":{"date-parts":[[2019,9,23]]}},"alternative-id":["10.1108\/JEIM-01-2019-0018"],"URL":"https:\/\/doi.org\/10.1108\/jeim-01-2019-0018","relation":{},"ISSN":["1741-0398"],"issn-type":[{"value":"1741-0398","type":"print"}],"subject":[],"published":{"date-parts":[[2019,9,23]]}}}