View all newsletters
Receive our newsletter - data, insights and analysis delivered to you

Nurture security habits or make programmes’ ‘useless’

Businesses need to nurture good habits to solve disjointed approach to security.

By James Nunns

Businesses will remain vulnerable to cyber security threats if they don’t change the way they approach training.

It doesn’t matter how complex and expensive your cyber security suite is if organisations fail to address employee naivety when it comes to the basics.

This is according to APMG and Templar Executives who gave a master-class speech on the best strategies to identify and combat the threats of cybercrime.

Combining the complexity of overlapping systems and changing personnel with different IT habits can lead to complex and multi-faceted cyber environments for companies to manage.

Andy Taylor, CLAS Consultant & Lead Assessor, APMG, said: "With employees coming from different backgrounds and industries joining an organisation at various points in its development, each with their own ideas on how to approach cyber security, you end up with a disjointed approach.

"It’s not about age; it’s entirely about behaviour and some employees are more naïve regarding basic cyber security habits than others."

Instead of resorting to throwing money at the issue, Taylor suggests to analyse the layers and to position the organisation so that it can best face the risk.

Content from our partners
Unlocking growth through hybrid cloud: 5 key takeaways
How businesses can safeguard themselves on the cyber frontline
How hackers’ tactics are evolving in an increasingly complex landscape

Andrew Fitzmaurice, CEO, Templar Executives, said: "Considering that 100% of all cybercrime victims had installed anti-virus or cyber security suites, the problem is one of user-habit.

"Furthermore, 100% of known breaches involve stolen credentials. For the most part, these credentials are offered up by the victim, either by persuasion or ignorance."

Fitzmaurice goes on to say that security programmes’, cyber insurance and high control safety systems are, "useless when someone wants to disobey the rules. In the face of human nature, it is best to nurture positive security habits in the office, than simply enforce cyber security procedure."

Websites in our network
Select and enter your corporate email address Tech Monitor's research, insight and analysis examines the frontiers of digital transformation to help tech leaders navigate the future. Our Changelog newsletter delivers our best work to your inbox every week.
  • CIO
  • CTO
  • CISO
  • CSO
  • CFO
  • CDO
  • CEO
  • Architect Founder
  • MD
  • Director
  • Manager
  • Other
Visit our privacy policy for more information about our services, how New Statesman Media Group may use, process and share your personal data, including information on your rights in respect of your personal data and how you can unsubscribe from future marketing communications. Our services are intended for corporate subscribers and you warrant that the email address submitted is your corporate email address.