Influence of Security Governance on Enterprise Security Risk Management Adoption in Chartered Universities in Kenya

Abstract

The purpose of this study was to investigate the influence of security governance on Enterprise Security Risk Management (ESRM) adoption in Kenya’s chartered universities. We utilized the diffusion of innovation theory to explain security governance as an organizational characteristic that steers and guides ESRM adoption in universities. From a target of 60 chartered universities, we randomly selected a sample of 22 public and 20 private chartered universities. We collected data from a security executive from the main campus of each of the sampled universities using a self-administered questionnaire. Spearman’s correlation results revealed that security governance had a strong, positive, and statistically significant influence on ESRM adoption; r s (33) =.524; p =.002. Ordinal logistic regression analysis indicated a good model, which explained 53.4% of the variance in ESRM adoption. Therefore, security governance has a significant influence on ESRM adoption. We have discussed managerial implications and suggested future research directions.