Risk, Security and Organizational Aspects

Risk and Security matters are commonly characterized as being part of every day life, organizations, online, personal and business environments (Luhmann, 1993). They feature almost every human activity and they rep- resent an important step in the evolution of human beings (Adams, 1995) (Ritchie & Brindley, 2007). The purpose of this book is to investigate major research findings about risk and security from a social point of view (Sandaman, 1988), taking into account important contributions from social scholars and research into sci- ence, technology and society (Gallivan et al., 2005), in order to arrive to the definition of organizational issues (Jasperson et al., 2005). The arriving point is the impact of the mentions dimensions (i.e. risk and security) into organizations (Wynne, 1982), for a variety of composed aspects, operational risk, market risk, information risk, safety on the work- place and the like. In the Information Systems (IS) field, researchers have successfully identified a number of key factors influencing individual adoption of new Information Technologies (IT) which relate directly to risk and security (Volti, 2001) (Venkatesh et al., 2003). However, extant research sheds little light on the antecedents of ongo- ing or continued usage (Karahanna et al. 1999), the relationship between individual and institutional concepts of risk and security is also problemat- ic, and at first glance, it appears that extant theory is of little use in terms of understanding, perceiving and evaluating the mentioned concepts (Gallivan et al., 2005). This section presents an overview of the methodological matters that guided the study of the present monograph. It comments interpretivism, comments on the possible role of theory in this study and discusses the re- search strategy of the author itself as the antecedent, and including some discussion and speculation of previous research findings that proved to be particularly useful. Myers argues that a “research method is a strategy of inquiry which moves from the underlying philosophical assumptions to research design and data collection” (Myers, 1997). A research strategy is chosen according to the fit, between it, and the purpose of the study and the nature of the re- search question posed (Marshall & Rossman, 2006). Broadly speaking, one must decide what philosophical perspective will underpin the study and one must choose a qualitative, quantitative or mixed strategy. Philosophical perspectives are also known as paradigms, and are defined by Guba and Lincoln as “basic belief systems based on ontological, episte- mological and methodological assumptions” and described as “axiomatic systems... differ[ing] from one another on matters much more fundamental than the locale in which the inquiry is conducted, the format of the inquiry report, or the nature of the methods used” (Guba & Lincoln, 1994). We intend for the purpose of this monograph here a “paradigm” as a basic belief system or a worldview that guides the researcher. The emphasis is on the paradigms, their assumptions, and the implica- tions of those assumptions for research. In the research timeline, authors have criticized the over-quantification and the received view of know- ledge, noting such issues as the theory-laden and value-laden nature of facts and the relationship between the inquirer and the object of the inquiry (Willcocks & Whitley, 2009). The paradigms most commonly discussed are: positivism, post- positivism, critical theory, and constructivism. Prior to research into risk and security organizational issues, those par- adigms must be then examined with regard to ontology (what is the form and nature of reality), epistemology (what is the nature of the relationship between the knower and what can be known), and methodology (how can the inquirer go about finding out whatever he/she believes can be known) (Guba & Lincoln, 1994). The main philoso