Abstract
Business technology research has often focused on value creation of platforms that leverage on execution of innovative strategies. This work espouses organizational innovation and the pursue of strategies that may at times result to unintended consequences on the security of business information systems. The organizational innovation theory is applied as a theoretical lens to explain the impact of innovation on information security. A quantitative mono-method of analysis was used to analyze data using statistical methods with a view to identify innovation constructs and testing relationships to find which had the most significant impact to the security of business information systems. The findings of the work undertaken provides useful insights to businesses by showing that constructs such as innovative design, structure and skill sets were most likely to exacerbate security risk to business information systems if these innovations were not in alignment to business goals. The importance of this research is that businesses need to take consideration of information security risks when being innovative.