{"id":179527,"date":"2019-02-04T10:59:00","date_gmt":"2019-02-04T15:59:00","guid":{"rendered":"https:\/\/www.ntegrait.com\/are-you-part-of-the-55-that-fails-to-offer-security-training-to-staff-members\/"},"modified":"2019-02-04T10:59:00","modified_gmt":"2019-02-04T15:59:00","slug":"are-you-part-of-the-55-that-fails-to-offer-security-training-to-staff-members","status":"publish","type":"post","link":"https:\/\/ntegrait.com\/are-you-part-of-the-55-that-fails-to-offer-security-training-to-staff-members\/","title":{"rendered":"Are You Part Of The 55% That Fails To Offer Security Training To Staff Members?"},"content":{"rendered":"

\"Computer<\/p>\n

Making sure the employees that rely on computer systems are trained in cybersecurity is the easiest way to avoid compromising attacks. However, only about 45 percent of business organizations actually make sure their employees are properly trained through mandatory training, and roughly 10 percent make cybersecurity an optional training. This information is alarming for a lot of reasons.<\/p>\n

Most Attacks Happen via the Compromise of an End User<\/h2>\n

Primarily, this new study means that 55 percent of organizations do not think their end users have a big enough role to play in keeping their network safe. In actuality, the end user is usually where systems are compromised in business settings. Phishing messages and other business security threats target people opening emails, performing things on social media, and doing basic functions that end users tend to do. Even if business owners do train their higher-ups, such as management members and team leaders, there is a major risk if the typical system users are not properly trained.<\/p>\n

Formal Security Training Is a Struggle in Most Business Settings<\/h2>\n

Even organizations that offer security training as a mandatory thing to all system users in the work environment, most do so in a limited fashion. According to Mimecast, only about six percent conduct cybersecurity training sessions or courses on a monthly basis. Four percent of business owners do training four times a year, and nine percent only require training when they bring in a new hire. Surprisingly, many places don\u2019t really offer any kind of formal cybersecurity training; they just send out a mass email of tips on occasion.<\/p>\n

Employees Are Often in the Dark Where Cybersecurity Is Concerned<\/h2>\n

Because business owners are not taking the time to ensure their team members are adequately trained in cybersecurity, employees are left in the dark about the threats that could be sitting in wait when they log in to the company system. Studies actually show that one out of four employees have no idea what some of the most common cybersecurity threats are, let alone what they look like or how to avoid making major mistakes.<\/p>\n

Considering that one in ten employees are using devices at work, connected to the work network, for personal reasons for at least four hours a day, the aforementioned facts show just how relevant cybersecurity training should be to all team members. Team members may be checking personal emails, hitting up social media sites, or otherwise doing things that could leave companies wide open for an attack. Even if the risks are handled through intranet email, for instance, threats can still get through on other email platforms that an employee uses on a network device.<\/p>\n

Implementing Cybersecurity Training Does Not Have to Be Difficult<\/h2>\n

The majority of business who do not have a good cybersecurity training plan in place avoid the process because they believe it will be too time-consuming. Some wrongly assume that formal training really is only necessary for people who have higher ranks in the company, which is obviously not true. Implementing a good training plan does not have to be a difficult or time-consuming thing. A few ways to incorporate a good training plan include:<\/p>\n