Impact of AI Slacking on Information Security Policy (ISP) Non-compliance: A Moderating Effect of Security Awareness

Authors

Md. Tuhinur Rahman, Bryan School of Business and Economics, University of North Carolina GreensboroFollow
Moez Farokhnia Hamedani, University of North Carolina Greensboro
Motahareh Pourbehzadi, University of North Carolina Greensboro
Hamid Nemati, University of North Carolina Greensboro

Abstract

Using AI tools for non-job-related activities (AI slacking) has introduced a novel security policy compliance challenge, which can be an extremely critical security threat to organizations. This study examines the impact of AI Slacking on Information Security Policy (ISP) non-compliance and investigates the role of security awareness in moderating such behaviors. Using the Experience Sampling Method, we collected data from 169 participants to capture within-person behavioral dynamics. Our results show that AI Slacking increases ISP non-compliance among employees, and neutralization fully mediates this relationship. We also found that security awareness weakens the positive impact of AI Slacking on ISP non-compliance. Theoretically, this study contributes to the literature on cyberslacking, security compliance, and security awareness. Practically, this study offers actionable insights for managers to maintain a balance between AI adoption and effective security governance.

Recommended Citation

Rahman, Md. Tuhinur; Hamedani, Moez Farokhnia; Pourbehzadi, Motahareh; and Nemati, Hamid, "Impact of AI Slacking on Information Security Policy (ISP) Non-compliance: A Moderating Effect of Security Awareness" (2025). WISP 2025 Proceedings. 24.
https://aisel.aisnet.org/wisp2025/24