Publication | Closed Access
The Association between Top Management Involvement and Compensation and Information Security Breaches
93
Citations
40
References
2012
Year
Information SecurityLawIct GovernanceTop Management TeamInformation Technology ManagementSecurity AwarenessManagementMergers And AcquisitionsSecurity ManagementAccountingLiability ManagementCorporate GovernanceInformation ManagementExecutive Information SystemInsider ThreatInformation Security ManagementInformation Security BreachesBusinessSecuritySecurity GovernanceTop Management Involvement
ABSTRACT This paper examines how an information technology (IT) executive's position in a top management team and how his/her compensation are associated with the likelihood of information security breaches. Using a sample drawn from multiple sources in the period from 2003 to 2008, we show that an IT executive's involvement in the top management team is negatively related to the possibility of information security breaches. We also find that the amount of behavior-based (i.e., salary) compensation and the pay differences of outcome-based (i.e., bonuses, stock awards, and stock options) compensation between IT and non-IT executives are negatively associated with the likelihood of information security breaches. Our findings shed light on how an IT executive's status in the top management team and the composition of his/her compensation can be related to a firm's IT governance mechanisms.
| Year | Citations | |
|---|---|---|
Page 1
Page 1