As much as 88% of data breaches are caused by human error, but only 43% of workers admit having made mistakes that compromised cybersecurity. In the past year a third of the breaches incorporated social engineering techniques and the cost of a breach caused by a human error averaged to $3.33 million.
To mitigate the risk, enterprises develop complex cybersecurity strategies and action plans, yet they are insufficient unless acknowledged by every member of their organization. Half of the Chief Information Security Officers (CISOs) plan to extend cybersecurity and privacy into all business decisions and that makes it every employee’s concern.
“With the ever-changing and evolving digital threats, maintaining cyber resistance is no longer limited to IT and security officers and depends on every member of the organization. Constant training is a way to build the team’s resilience against threats, yet it is not uncommon for them to turn into dull PowerPoint sessions, after which few remember the safety measures they should take. The problem is amplified by the workforce operating from home and not subscribing to security policies of the company”, says Juta Gurinaviciute, Chief Technology Officer at NordVPN Teams.
CISOs and other stakeholders can grab employees’ attention by changing the methods of the regular cybersecurity training. Those who found training to be very interesting were 13 times more likely to change the way they think about cyber threats and protection against them. Therefore, organizations should seek memorable, entertaining and accessible ways to talk about complicated security matters.
5 ways to make cybersecurity training more attractive
Gamify it. Dull figures slide after slide, myriads of ‘dos and don’ts’ along with knotty safety procedures make the process lethargic. Quizzes, games, prizes and quality time with colleagues will enhance enjoyment and learning. Interactive activities boost engagement and thus yield better results when it comes to teaching staff about cybersecurity.
Engage in friendly competition. The key element of the gamification is competition. However, putting a prompt question within the video lesson or offering ‘innovative’ content is not enough. People are engaged when they have an incentive, be it a prize or pride. Companies should organize monthly, quarterly or yearly competitions to keep a workforce constantly aware of new threats and how to tackle them.
Make it rewarding. Turn the right answer into a badge, a discovered vulnerability into a star, and a year without an incident into a holiday bonus. People expect feedback while participating in a competition, and the reward system is the optimal way to do it. Instead of giving an opinion to everybody in private, security and IT professionals can award the achievements. They also help to track the progress of each employee and take the precautions if necessary.
Turn it into a team effort. Staying protected from breaches and attacks is everyone’s interest. Thus employees should be encouraged to work in teams and solve riddles with their colleagues. In a cybersecurity workshop, for instance, employees can be asked to craft a phishing email. This encourages them to find out more about this criminal technique, to look at the examples of it and thus recognize them at the first glance next time.
Be understood. For information security professionals, IT and cybersecurity jargon is a native language. Yet for accountants, marketers and many others it’s just a meaningless jabber. Make sure to speak clearly and to explain every term in plain language so the relative layman understands and remembers.
These tips also apply when teaching the staff how to use various cybersecurity tools, such as cloud services or VPNs. With people working remotely, many of them face the need to use two-factor authentication or secure connection for the first time as it was readily available by default at their usual workstations. Now they have to care for their and their company’s protection themselves.
“Cybersecurity is no longer a thing only information security and IT departments care about. As many workplaces rely solely on digital solutions which are used by the entire workforce, staying protected against cyberattacks requires everyone’s joint effort. The main notions of data security must be conveyed in an appealing manner” summarizes NordVPN Teams expert.
Sourced NordVPN Teams
For more information visit: nordvpnteams.com
For more Leadership news follow i-invest Online.
- Transforming football: IBM and Bayer Leverkusen use AI for superior game analysis
Bayer 04 Leverkusen and IBM are collaborating on a platform that combines efficiency, sporting excellence and modern technologies to strengthen the connection between players, coaches, clubs and internal IT IBM (NYSE: IBM) and German Bundesliga giants Bayer 04 Leverkusen are working together to create groundbreaking solutions that combine cutting-edge AI technologies, scalable cloud systems, and data-driven… Read more: Transforming football: IBM and Bayer Leverkusen use AI for superior game analysis - Freshwater use for material production has doubled in two decades
Researchers recommend that governments and industries track water use in material supply chains and invest in water-saving technologies – especially in water-stressed countries The amount of water used globally to produce industrial materials has doubled over the last 25 years causing environmental strain, according to new research by Vienna University of Economics and Business (WU).… Read more: Freshwater use for material production has doubled in two decades - FTSE Russell global survey: Asset owners concern about climate change risk grows
Research from FTSE Russell reveals 85% of asset owners identify climate change as a major concern, with sustainable investment becoming more central to fiduciary responsibility FTSE Russell, the global index provider, recently published the findings from its eighth annual asset owner survey, analysing how sustainable investment (SI) is perceived, considered and used by asset owners across… Read more: FTSE Russell global survey: Asset owners concern about climate change risk grows - Balancing three essential needs keeps employees motivated
Employees experience the greatest motivation and wellbeing when three key psychological needs are achieved in harmony, a new study has found New research led by Manchester Metropolitan University Business School has found that balancing three factors leads to people feeling more motivated and positive in their working lives. The study highlights how autonomy –… Read more: Balancing three essential needs keeps employees motivated - AI benefits capital owners more than workers
A recent study shows the benefits of AI are not evenly distributed, with workers, particularly those in high- and medium-skill occupations, experience declining income shares AI is reducing labour’s share of total income, new research from Vienna University of Economics and Business (WU Wien) has found. In a study of European regions, Klaus Prettner, Professor… Read more: AI benefits capital owners more than workers