This paper emphasizes the central role of discretion in organizations, and its importance for understanding Information Systems (IS) security. By way of an introduction to the relevant research field of power and IS security, a brief overview of the literature on power, IS and security is presented. We then embark on developing a theoretical framework for the study of discretion, by analyzing the conceptual interrelationship between power, trust and discretion in the context of IS security. In doing so, we introduce a distinction between 'active' and 'passive' discretion, which is based on how much formal rules eventually influence the use of discretion. The paper concludes with a discussion on the implications that the terms power, trust and discretion have for IS security.
Mendeley saves you time finding and organizing research
There are no full text links
Choose a citation style from the tabs below