Abstract:
The purpose of this study was to investigate the influence of security governance on Enterprise
Security Risk Management (ESRM) adoption in Kenya’s chartered universities. We utilized the
diffusion of innovation theory to explain security governance as an organizational characteristic
that steers and guides ESRM adoption in universities. From a target of 60 chartered universities,
we randomly selected a sample of 22 public and 20 private chartered universities. We collected
data from a security executive from the main campus of each of the sampled universities using a
self-administered questionnaire. Spearman’s correlation results revealed that security governance
had a strong, positive, and statistically significant influence on ESRM adoption; r
s
(33) =.524; p
=.002. Ordinal logistic regression analysis indicated a good model, which explained 53.4% of the
variance in ESRM adoption. Therefore, security governance has a significant influence on ESRM
adoption. We have discussed managerial implications and suggested future research directions.
