Organizations investing in cyber security technology and process are expressing risk in economical terms, helping to drive a cost-effective security stance – one that includes training.
Cyber security is now being seen as an investment strategy intent on reducing the risk of cyber attack. Realizing the cost justification of “spend now or pay for it later” is fascinating, as the potential for attack is so probable, that organizations are believing it’s less expensive to put preventative security layers up against an unseen – but expected – foe.
According to the Global Cyber Risk Perception Survey Report 2019 from Marsh and Microsoft, one of the key elements is that of user training. While other aspects of cybersecurity are found to be more important, the need for Security Awareness Training appears to be clear:
- 84% of organizations either have awareness training or plan on implementing it within the next 12 to 24 months.
- 80% of organizations that look at cyber risk from an economical perspective implement awareness training
- 56% of organizations expect supply chain partners and thirds parties to implement security awareness training
The value of Security Awareness Training is found in its unique ability to empower the user to act as part of an organization’s defensive strategy. Every other type of solution allows the user to relax their stance and simply assume that everything will be alright. In contrast, Security Awareness Training teaches employees that attacks will make it all the way to the user – despite having a strong cyber defense – and that the user needs to be the last line of defense, vigilantly looking for suspicious and potentially malicious content in email and on the web that could put the organization at further risk.
The majority of organizations appear to see the value of Security Awareness Training. If you haven’t begun to utilize it within your organization, consider having it as a key part of your strategy. Did you know that when you use KnowBe4, the world's largest cyber insurers give you a better deal? Marsh awarded KnowBe4 with the "Cyber Catalyst " designation, here is more detail.
New-school Security Awareness Training is critical to enabling you and your IT staff to connect with users and help them make the right security decisions all of the time. This isn't a one and done deal, continuous training and simulated phishing are both needed to mobilize users as your last line of defense. Request your quote for KnowBe4's security awareness training and simulated phishing platform and find out how affordable this is!
