TY - JOUR
T1 - Costly but effective
T2 - comparing the factors that influence employee anti-malware behaviours
AU - Blythe, John M.
AU - Coventry, Lynne
N1 - Funding Information:
This work was supported by an internal PhD funded studentship from Northumbria University. We would also like to thank Dr. Julia Yesberg for her assistance with revisions of the paper.
Publisher Copyright:
© 2018
PY - 2018/10/1
Y1 - 2018/10/1
N2 - A cross sectional survey examined an extended version of Protection Motivation Theory (PMT) to identify factors that influence employees’ intentions to perform three anti-malware behaviours. 526 employees completed an online survey that measured an employees’ threat (severity and susceptibility) and coping (self-efficacy, response efficacy and response costs) appraisal. The survey also extended PMT to include additional factors of experience, psychological ownership, organisational citizenship and security responsibility. Factors were found to have differing effects on employees’ intentions to engage in anti-malware behaviours indicating the importance of targeted behavioural analyses. From PMT, coping appraisal was more predictive of security behaviours than threat appraisal. Specifically, across all behaviours, response costs were identified as a key factor that may be a barrier to behaviour whereas response efficacy was a key facilitator. Moreover, additional factors to extend PMT contributed unique variance to predicting each anti-malware behaviour. The study highlights the importance of identifying key factors prior to intervention development and demonstrates the benefit of expanding on behavioural theories to account for factors that may be important for the cybersecurity context.
AB - A cross sectional survey examined an extended version of Protection Motivation Theory (PMT) to identify factors that influence employees’ intentions to perform three anti-malware behaviours. 526 employees completed an online survey that measured an employees’ threat (severity and susceptibility) and coping (self-efficacy, response efficacy and response costs) appraisal. The survey also extended PMT to include additional factors of experience, psychological ownership, organisational citizenship and security responsibility. Factors were found to have differing effects on employees’ intentions to engage in anti-malware behaviours indicating the importance of targeted behavioural analyses. From PMT, coping appraisal was more predictive of security behaviours than threat appraisal. Specifically, across all behaviours, response costs were identified as a key factor that may be a barrier to behaviour whereas response efficacy was a key facilitator. Moreover, additional factors to extend PMT contributed unique variance to predicting each anti-malware behaviour. The study highlights the importance of identifying key factors prior to intervention development and demonstrates the benefit of expanding on behavioural theories to account for factors that may be important for the cybersecurity context.
U2 - 10.1016/j.chb.2018.05.023
DO - 10.1016/j.chb.2018.05.023
M3 - Article
AN - SCOPUS:85048514325
SN - 0747-5632
VL - 87
SP - 87
EP - 97
JO - Computers in Human Behavior
JF - Computers in Human Behavior
ER -