Companies often turn to a powerful emotion to get employees to be vigilant about cybersecurity. They scare them.

If you do this, or don’t do that, something awful will happen. Click on phishing messages, and the company’s network will be exposed to hackers. Use simple passwords, and your personal files will get stolen.

The problem: Fear doesn’t work. Sure, it may get people to act in that moment. But scare tactics don’t get people invested in security over the long term, as Marc Dupuis of Washington University and I discovered in research last year.

In fact, it can do the opposite. That is because fear can leave employees in a constant state of anxiety, which makes them unable to think clearly about threats. Alternatively, such heavy-handed, scare messaging can make employees disgruntled and uninterested in security, thinking that the threats are exaggerated—and that bosses don’t trust them to do the right thing.

But fear not. Although scaring employees may not be an effective way to keep them vigilant, there are other tools that do work. First, let’s dig deeper into why fear doesn’t work.

This post first appeared on wsj.com

You May Also Like

Guard troops back inside Capitol after furor over move to parking garage

National Guard troops were allowed back into the Capitol to rest after…

North Carolina court blocks voter ID law for discriminatory intent

A panel of state judges blocked North Carolina’s voter identification law on…

More gay and bisexual men can donate blood under new FDA rules

The Food and Drug Administration said Thursday that it finalized a new…

Democrats to report $14 million fundraising haul in February

The Democratic National Committee hauled in more than $14.4 million in February…