March 7, 2016
UK organisations are putting their reputation, customer trust and competitive advantage at greater risk by failing to provide their staff with effective cyber-security awareness and ability to defend against cyber-attacks, according to a new report.
The research carried out by Axelos, a UK government/Capita joint venture, found that 75 percent of large organisations suffered staff-related security breaches in 2015, with 50 percent of the worst breaches caused by human error.
The research showed that only a minority of executives responsible for information security training in organisations with more than 500 employees believe their cyber-security training is “very effective”. While four in ten (42 percent) say their training is “very effective” at providing general awareness of information security risks, only just over a quarter (28 percent) say their efforts are “very effective” at changing behaviour in relation to information security.