This study presents an empirical investigation of employees' extra-role behaviour in the information security context based on person - organisation fit theory. The perspective of fit evaluates the differences and similarities between information security policy makers and practitioners to provide employees with an approach to decide whether and how to participate in the implementation of extra security actions. We developed a research model and then conducted a survey and PLS-SEM analysis to test the corresponding hypothesis. The results illustrate that perceived demand - ability fit, perceived need - supply fit, and perceived value fit are effective in motivating security commitment. The empirical evidence shows that security commitment is a partial mediator between complementary fits (demand-ability fit and need-supply fit) and participation intention and is a full mediator between supplementary fit (value fit) and participation intention. In addition, apathy reduces motivation to engage in extra-role behaviour, while value fit and security commitment eliminate such apathy.

• 出版日期2019-5-4
• 单位大连理工大学; 青岛大学