Why Employees Violate Cybersecurity Policies

[Andrezj]

While IT specialists toil away to create better, smarter, and safer technical systems, there is one risk they can’t program away: humans.

Our recent research, however, suggests that much of the time, failures to comply may actually be the result of intentional yet non-malicious violations, largely driven by employee stress.

Research: Why Employees Violate Cybersecurity Policies

In the face of increasingly common (and costly) cyberattacks, many organizations have focused their security investments largely on technological solutions. However, in many cases, attacks rely not on an outsider’s ability to crack an organization’s technical defenses, but rather on an internal...

hbr.org