October 2016
Issue Map
The Buzz

Security Training Needs to Be Higher Quality

Sunday, September 25, 2016

Two recent studies show that U.S. organizations need to do a better job training their employees in the areas of data security to prevent breaches and monetary losses. In early September, Wells Fargo Insurance released their cybersecurity study that demonstrated investing trends in companies with $100 million or more in annual revenue, and surveyed decision makers in these organizations regarding data, hackers, network vulnerabilities, and other various security measures. The Wells Fargo study showed organizations were twice as concerned with losing private data than they were with being hacked or suffering some other security breach. However, it noted that these companies believed employee misuse of technology wasn’t a critical concern. Yet, another report released in September by the Ponemon Institute confirmed this is indeed a real threat. Organizations spend an average of $4.3 million annually to mitigate the risk of insider threats, and "companies perceive insider threats as mostly driven by malicious employees, but the fact is that a significant portion of the risk is due to insider carelessness.” The report went on to explain that “training programs that companies have are just not very good. They are really focused on check-the-box compliance requirements to show everyone that [the] company [has] training on data protection.”

Be the first to comment
Sign In to Post a Comment
Sorry! Something went wrong on our end. Please try again later.