2017 Human security behavioris not improving even though information security and services spending is topping $81 Billion worldwide according to Gartner Research.
WHY IS THIS HAPPENING ?
There is a pretty large chasm between cyber security awareness and taking action. No action leads to employee apathy, and it is widespread among most companies. There are few technology companies that work with companies to reduce the apathetic chasm through hands on “just in time” behavior training and awareness.
The 2016 Verizon Data Breach Report states human actions are more than 60 percent of information security issues. Human factors are the number one cause of information security loss. The report further discusses 26% of employees sent sensitive information to the wrong person; while twenty-three percent opened a social engineering malware phishing email.
All this information leads to employees being too apathetic. When the pain exceeds the cost of change then steps to take action occur. Thus, when education is not transferred correctly and into actionable choices, then this is known as apathy. A 2015 Sailpoint study indicates 20% of employees would sell their work passwords for as little as $150.
Detachment / Apathy is not an easy issue to resolve; it is also not one that IT can tackle by themselves. The entire organization needs to be engaged. At the core is to interlace proactive security behaviors into the company value system.
Three quick steps to vastly improve your Human Firewall:
1. Promote culture by developing a new proactive security value to your core value set and campaign the organization to adopt the value through incentives and team efforts.
2. Embrace a powerful human information security technology to promote the correct behaviors.
3. Quickly identify disgruntled employees using cyber security technology