While there was recognition that change was in motion, twelve months on and it’s safe to say this ‘new age’ of operating has become the norm. The evolution in work practices has brought cybersecurity sharply into focus; not only is the threat landscape more vast and complex than it’s ever been before, the frequency and severity of attacks is the highest we’ve ever seen. The scary thing is just how normal this is now also becoming, as businesses struggle to keep pace with this evolving challenge.
As a result, many organisations are falling into the trap of assuming their cybersecurity challenges are being caused solely by technology shortfalls. Whilst it’s undoubtedly critical to have the right tools in place, many companies are overlooking what human factors they also need to consider. A large amount of security incidents (40%, by conservative estimates) are caused by human behaviour, such as clicking on a phishing link. Companies can have all the tools in the world at their disposal, but if the root cause is driven by human actions that are not protected or controlled, then they remain vulnerable to a breach.