Abstract
Corporate information security (InfoSec) investments are a great economic challenge where assessment tools can provide effective support. Such tools, however, are rarely applied in practice, which raises the question about the factors influencing a tool’s application. This study analyses the role of acceptance factors for the intention to apply InfoSec assessment tools. For this, an experimental vignette study based on seven scenarios is used to study the influence of those factors on the constructs of perceived usefulness, perceived ease of use, and intention to use, following the extended technology acceptance model (TAM2) by Venkatesh and Davis (2). The responses are analyzed using t-tests, an ANCOVA, and descriptive statistics and the results suggest a significant and positive influence of the acceptance factors on the constructs. Among other implications, the study supports the idea of integrating acceptance factors in the design of InfoSec assessment tools and derives new directions for future research.
Recommended Citation
Bauer, Laura and Kuehnel, Stephan, "The Role of Acceptance Factors for the Application of
Assessment Tools for Information Security Investment
Decisions" (2025). ACIS 2025 Proceedings. 54.
https://aisel.aisnet.org/acis2025/54