A Model for the Adoption Process of Information System Security Innovations in Organisations: A Theoretical Perspective

TL;DR

This paper presents a comprehensive theoretical model for understanding how organizations adopt Information System Security innovations, integrating multiple theories to capture organizational and user-level factors influencing adoption.

Contribution

It introduces a unified model combining organizational and user acceptance perspectives, advancing the understanding of IS security adoption processes.

Findings

Proposes a staged adoption process model

Integrates DOI, TAM, TPB, and TOE frameworks

Highlights factors influencing security innovation adoption

Abstract

In this paper, we develop a theoretical model for the adoption process of Information System Security innovations in organisations. The model stemmed from the Diffusion of Innovation theory (DOI), the Technology Acceptance Model (TAM), the Theory of Planned Behaviour (TPB) and the Technology-Organisation-Environment (TOE) framework. The model portrays Information System Security adoption process progressing in a sequence of stages. The study considers the adoption process from the initiation stage until the acquisition of innovation as an organisational level judgement while the process of innovation assimilation and integration is assessed in terms of the user behaviour within the organisation. The model also introduces several factors that influence the Information System Security innovation adoption. By merging the organisational adoption and user acceptance of innovation in a single depiction, this research contributes to IS security literature a more comprehensive model for IS security adoption in organisation, compare to any of the past representations.