Security News The biggest threat to enterprise security? People

Winter Soldier

Level 25
Thread author
Verified
Top Poster
Well-known
Feb 13, 2017
1,486
People are the biggest threat when it comes to enterprise cyber-security, not technology or processes. This is according to a new report by The Institute of Information Security Professionals (IISP), which says there are a couple of ways people are putting organizations at cyber risk.

The first, and most obvious one, is not being careful enough when opening links in emails, downloading attachments and visiting threat-carrying sites. The second one, less obvious, is the lack of technical skill. And finally, the third one, is the risk from senior business stakeholders making “poor critical decisions around strategy and budgets.”

Despite all of this, enterprise cyber-security seems to be getting better, as now five percent more companies feel better placed to deal with a breach or similar incident, compared to last year.

A rise in budget has been seen in 70 percent of companies (up from 67 percent), and seven percent have reported a decrease in budget, also down from 12 percent last year.

“The survey highlights the continued need for industry, government, academia and professional organizations like the IISP to continue to work hard to attract new entrants and younger people into the industry,” says Piers Wilson, author of the report and Director at the IISP. “This year, over 75 percent of respondents had a degree and over a third had a post graduate Masters Degree — an increase of over five percent, reflecting the increasing number of university programs. While this is very encouraging, we also need to develop other routes into the industry to harness talent from diverse backgrounds.”
 

In2an3_PpG

Level 18
Verified
Top Poster
Content Creator
Well-known
Nov 15, 2016
867
The first, and most obvious one, is not being careful enough when opening links in emails, downloading attachments and visiting threat-carrying sites. The second one, less obvious, is the lack of technical skill. And finally, the third one, is the risk from senior business stakeholders making “poor critical decisions around strategy and budgets.”

Despite all of this, enterprise cyber-security seems to be getting better, as now five percent more companies feel better placed to deal with a breach or similar incident, compared to last year.

Only 5 percent! :D

Should i post the same video with Mikko talking about idiots again :)

Nice share.
 

jamescv7

Level 85
Verified
Honorary Member
Mar 15, 2011
13,070
It makes sense, people holds the major decision making in different aspect including cybersecurity.

With such on-going campaign, people are either not informed or ignorant to follow certain precautionary measures.
 

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

User Menu

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top