Information Systems Security and Privacy


Although information security knowledge is spreading and management tools are improving, information securityincidents remain widely heard. Studies have investigated information security behaviors through motivational theorieslike the Theory of Planned Behavior. Since implementation intentions are considered as a behavior changing techniquethat may overcome goal deviations, this paper attempts to explore information security behaviors from the volitionalperspective. Synthesizing the findings of twelve implementation intention studies, the proposed research modelpostulates that implementation intention intervention may affect information security behaviors. Besides, the moderatingeffects of two factors are included in the research model: difficulty of information security behaviors and strength ofcommitment to the goal intention. This research-in-progress paper describes the experimental methodology and providesinstruments to validate the proposed model. The results are expected to establish the importance of action plans inimproving information security behaviors.