Abstract
Information security breaches are one of the fastest growing trends in the world. The pace and progression exceeds what many corporate companies can handle. That is why companies cannot rely on security technology to help reduce the risk of being compromised only, however employees also need to be involved. The goal of the study was to test the relationship between communication models and information security compliance. The researcher identified communication theories, which would later be used to develop into a framework called Miscellany of Perception and Determinism (MPD). Ten factors were extracted from this framework to test the relationship between communication and information security compliance at organizations. The MPD Framework shows that there is a significant relationship between the dependent variable Information security compliance and independent variables (communication factors) like Media Appropriateness, Reason for Communication, Non Conflicting Interpretations, Feedback Immediacy and Personal Focus. The findings also show that personal focus, non-conflicting interpretations, feedback immediacy, media appropriateness, and reason for communication explain 61.3 percent of information security compliance. The implications of these findings is that communication mediums used by organizations are generalised and do not consider user experience for promoting understanding thus influencing behaviour. Findings show that once policy communication includes the consideration of personal focus, feedback immediacy, non-conflicting interpretations, media appropriateness and the reason for communication, organizations have a greater chance of improving employee security compliance.