Home Technology Company security incidents surge, as two thirds of staffers admit they don’t pay attention to ‘boring’ cyber training
Our website publishes news, press releases, opinion and advertorials on various financial organizations, products and services which are commissioned from various Companies, Organizations, PR agencies, Bloggers etc. These commissioned articles are commercial in nature. This is not to be considered as financial advice and should be considered only for information purposes. It does not reflect the views or opinion of our website and is not to be considered an endorsement or a recommendation. We cannot guarantee the accuracy or applicability of any information provided with respect to your individual or personal circumstances. Please seek Professional advice from a qualified professional before making any financial decisions. We link to various third-party websites, affiliate sales networks, and to our advertising partners websites. When you view or click on certain links available on our articles, our partners may compensate us for displaying the content to you or make a purchase or fill a form. This will not incur any additional charges to you. To make things simpler for you to identity or distinguish advertised or sponsored articles or links, you may consider all articles or links hosted on our site as a commercial article placement. We will not be responsible for any loss you may suffer as a result of any omission or inaccuracy on the website.

Company security incidents surge, as two thirds of staffers admit they don’t pay attention to ‘boring’ cyber training

by uma
6 views
Acronis Unites with Industry Leaders to Publish the First Unified Cybersecurity Guide for Boards of Directors

 

LONDON, 26 July 2022, 0900am BST – Three quarters of UK and US companies have experienced a security incident in the last 12 months, as a significant percentage of employees admit that they are not engaged in their organisation’s cybersecurity efforts. This is according to research unveiled in a new report from email security company, Tessian.

The report, titled: How Security Cultures Impact Employee Behaviour, surveyed 2,000 UK and 2,000 US employees, and 500 UK and US IT decision makers. The data revealed that 85 per cent of employees participate in security awareness programs, however, 64 per cent don’t pay full attention when in the session. What’s more, 36 per cent of respondents consider their company’s security training ‘boring’.

The report also revealed that staffers don’t understand their role in keeping their company secure. 30 per cent said they don’t think they personally play a role in maintaining their company’s cybersecurity, and 45 per cent don’t even know who to report security incidents to.

Virtually all IT and security leaders surveyed by Tessian (99 per cent) agreed that a strong security culture is important in maintaining a strong security posture, however, 45 per cent of IT leaders said incidents of data exfiltration have increased in the last year, as people took data when they left their jobs, and, one in three employees admitted to taking data with them when they quit their job.

The report also revealed generational differences when it comes to cybersecurity culture perceptions. Older employees are four times more likely to have a clear understanding of their company’s cybersecurity policies compared to their younger colleagues, and are five times more likely to follow those policies.

When it comes to risky cybersecurity practices such as reusing passwords, taking company data and opening attachments from unknown sources, younger employees are the least likely to see anything wrong with these practices.

Kim Burton, Head of Trust and Compliance at Tessian, commented:

“Everyone in an organisation needs to understand how their work helps keep their coworkers and company secure. To get people better engaged with the security needs of the business, education should be specific and actionable to an individual’s work.

“It is the security teams’ responsibility to create a culture of empathy and care, and they should back up their education with tools and procedures that make secure practices easy to integrate into people’s everyday workflows. Secure practices should be seen as part of productivity. When people can trust security teams have their best interest at heart, they can create true partnerships that strengthen security culture.”

 

You may also like

This website uses cookies to improve your experience. We'll assume you're ok with this, but you can opt-out if you wish. Accept Read More