Infosec, a cybersecurity education company, released findings from its new research report, Cybersecurity Culture — Quantified. Designed to assess employee perceptions and sentiments towards cybersecurity best practices and policies, the study revealed a significant variation of security culture by industry, department and organization size.
A strong cybersecurity culture, an organization’s collective awareness, attitudes and behaviors toward security, is based on employees willingly embracing security best practices both professionally and personally. Accordingly, ISACA and CMMI Institute research has shown organizations with strong cybersecurity cultures experience increased visibility into potential threats, reduced cyber incidents and greater post-attack resilience among other measurable benefits.
However, cybersecurity culture has historically been seen as an abstract concept and difficult to quantify. To help overcome this challenge, Infosec developed a framework and survey to classify cybersecurity culture and systematically measure results, allowing organizations to turn this important security variable into a data-driven element in their cybersecurity strategy.
"Our goal with this study was to understand the current state of security culture and uncover employee sentiments impacting security behaviors. The results show employee beliefs toward cybersecurity vary widely, which can have a major impact on an organization's security posture." said Jack Koziol, CEO and founder at Infosec. "If employees aren't engaged in security training and best practices, it limits the security team's ability to effectively mitigate security threats. Understanding where your security culture is today is an essential first step to build an effective cybersecurity strategy."
Quantifying the Current State of Security Culture
To conduct the study, Infosec surveyed over 1,000 professionals across dozens of industries to measure employee attitudes and perceptions towards cybersecurity and the organization’s security practices among five cybersecurity culture domains (Confidence, Engagement, Outcomes, Responsibility, Trust).
Results revealed unique cultural strengths and weaknesses based on respondents’ organization size, department and industry. Large organizations with 50,000+ employees, IT and security departments, and law firms and legal services reported the strongest cybersecurity cultures, and small organizations with less than 100 employees, distribution departments and agriculture reported the weakest cybersecurity cultures.
Other key findings on employee attitudes and perceptions around cybersecurity include:
About MRB PR:
MRB PR is a public relations company.
Published: Friday, July 30, 2021
miSecureMessages is an encrypted messaging application designed as a pager replacement for healthcare organizations, call centers, and enterprise environments.
eGain has rearchitected its platform to handle the messaging channels in a new way. eGain Customer Engagement Hub™, the platform that unifies knowledge, AI, analytics, and conversations to ensure that no channel is left in a silo, also powers the eGain Messaging Hub.
Contact Center Software
Startel is a leading provider of unified communications, business process automation and performance management solutions for contact centers. Since its founding in 1980, Startel has established a loyal customer base from a variety of industries, including contact centers, education, healthcare, insurance and telephone answering service. Startel's solutions are designed to enhance the customer experience, improve employee productivity, reduce operating costs, and increase revenues.
Engage with your customers in Real-Time.
Connect personally with your customers, generating new revenues and boosting CSAT scores. Synthetix Chat is the fastest way to engage your users, with a Live Key-Press Feed, ID and Verification, simultaneous chats and AI-Powered predictive suggestions, Synthetix Chat reduces averages handling times by up to 50%.