Kennedy Njenga, Faith Nyamandi
Abstract
Businesses have always viewed human ingenuity positively, especially in improving operational processes. At times, ingenuity in the form of workarounds may cause management tensions if such action circumvents what is considered sound information security practices. This work reports on research that investigates ingenuity in workaround practices and its implications for information security policy practices. We explored the factors that drive ingenuity in workarounds. We used structural equation modeling (SEM) with AMOS and SPSS to examine the implications of these factors on information security integrity. The research findings offer empirical insights into the detrimental impact of workarounds on information security policy compliance, highlighting the potential harm that certain forms of ingenuity can cause businesses if not managed effectively. Recommendations for improved information security policy design and implementation are suggested, contributing to the body of knowledge that will assist businesses and researchers in strengthening security protocols that incorporate the human element.