New research by security awareness training company KnowBe4 has revealed the cybersecurity industry's current concerns and frustrations. Over 200 professionals participated in the survey, with 29% reporting that their advice was ignored at their workplaces, while 12.5% noted working in an inadequate security culture. The findings underscore the necessity of fostering a robust security culture within organisations, highlighting shared responsibility for cybersecurity.
The survey also addressed the inefficacy of annual cyber awareness training and why organisations merely go through the motions of "tick-box" compliance exercises to meet audit requirements. Such once-a-year training models inundate employees with excessive information, often using incentives like coffee and doughnuts to encourage participation. Instead, the article suggests organisations should adopt newer, user-friendly training styles that resonate with users, such as incorporating elements of comedy or drama and delivering concise and impactful sessions. Furthermore, the survey proposes leveraging short, timely interventions like nudges to promote security awareness and nurture a culture of cybersecurity vigilance.
What is this page?
You are reading a summary article on the Privacy Newsfeed, a free resource for DPOs and other professionals with privacy or data protection responsibilities helping them stay informed of industry news all in one place. The information here is a brief snippet relating to a single piece of original content or several articles about a common topic or thread. The main contributor is listed in the top left-hand corner, just beneath the article title.
The Privacy Newsfeed monitors over 300 global publications, of which more than 5,750 summary articles have been posted to the online archive dating back to the beginning of 2020. A weekly roundup is available by email every Friday.