Information Security Policy and Compliance in Oil and Gas Organizations-A Pilot Study

Abstract :

Oil and gas organizations considered as the backbone of every country’s economy. Information security attacks on these organizations has been increased rapidly in last decade. Oil and gas organizations often invest in technical solutions to mitigate information security risks. whereas most information security attacks occur due to internal employees’ negligence towards information security policy. Information security policy compliance is a behavioral problem. Numerous researchers provided solutions for this problem with the help of behavioral theories. Studies suggested that appropriate information security governance and information security awareness improves social bonding, and good social bonding between employees can enhance information security policy compliance in oil and gas organizations. This paper based on the pilot study to analyze appropriate information security governance, and social bonding effects on oil and gas organizations employee’s behavior towards information security policy compliance.