Welcome!

News Feed Item

Entry-Level Employees Lack Awareness of IT Security Threats, Company Cybersecurity Policies

An IT security knowledge gap exists between higher-ranking and entry-level employees due to a lack of communication and training, a new study finds.

WASHINGTON, Feb. 15, 2018 /PRNewswire/ -- Nearly half (46%) of entry-level employees don't know if their company has a cybersecurity policy, according to new research from Clutch, a B2B research firm. The study also suggests that more communication and training on cybersecurity policies is needed for employees.

More than half of the employees surveyed (52%) say their company currently has a cybersecurity policy.

Yet, the survey also indicates that employees at all levels of an organization are probably unaware of the IT security threats their companies potentially face.

Nearly two-thirds of employees (63%) surveyed said they don't know if the quantity of IT security threats their companies face will increase or decrease over the next year. Additionally, among entry level employees, 87% said they don't know if the number of threats will shift in the next year.

IT security experts are quick to point out that employees' lack of awareness puts companies at risk for IT security breaches.

"Attacks will be more frequent, more voracious and more sophisticated in breaking through any protection you can put in place," said Steve Scott-Douglas, CIO of Ciklum, a global software engineering and solutions company.

The survey also found that employees are less likely to recognize IT services as the primary area of security vulnerability at their company. Instead, they cited theft of company property as the primary threat to company security, ahead of unauthorized information and email phishing scams. 

To increase awareness of IT security issues among employees, experts recommend that all companies maintain a 'top-down' cybersecurity policy.

Employee awareness of IT security issues should be driven by a company's executive leadership. When company leaders emphasize and communicate IT security throughout their organization, their employees are more aware and prepared for threats.

"The sheer act of taking the time to put a policy in place is the first step in going from the unconscious incompetence debate around [security] to then build up your competence and become aware of the threats and take those threats very seriously," said Scott-Douglas.

Cybersecurity Policies Can Empower Employees

Employees of companies with a cybersecurity policy are more likely to:

  • Feel prepared for a cybersecurity threat
  • Accurately survey the number of IT security threats their company will face
  • Understand IT services as the primary security vulnerability for their company

One way companies can drive awareness is through security training during new employee onboarding. Companies tend to offer IT security onboarding programs to higher-level employees only, which may account for the greater awareness and feeling of preparedness this group has regarding IT security threats.

Providing IT security onboarding for all employees can narrow the IT security knowledge gap between entry-level and higher-level employees and help ensure organizations as a whole are more aware and prepared for security issues.

To read the full report and source the survey data, visit: https://clutch.co/it-services/resources/employee-awareness-it-security-threats.

About Clutch
A B2B research, ratings, and reviews firm in the heart of Washington, DC, Clutch connects small and medium businesses with the best-fit agencies, software, or consultants they need to tackle business challenges together and with confidence. Clutch's methodology compares business service providers and software in a specific market based on verified client reviews, services offered, work quality, and market presence.

Contact

Grayson Kemper

[email protected]

(202) 470-0491

 

Cision View original content with multimedia:http://www.prnewswire.com/news-releases/entry-level-employees-lack-awareness-of-it-security-threats-company-cybersecurity-policies-300599289.html

SOURCE Clutch

More Stories By PR Newswire

Copyright © 2007 PR Newswire. All rights reserved. Republication or redistribution of PRNewswire content is expressly prohibited without the prior written consent of PRNewswire. PRNewswire shall not be liable for any errors or delays in the content, or for any actions taken in reliance thereon.

Latest Stories
Sometimes I write a blog just to formulate and organize a point of view, and I think it’s time that I pull together the bounty of excellent information about Machine Learning. This is a topic with which business leaders must become comfortable, especially tomorrow’s business leaders (tip for my next semester University of San Francisco business students!). Machine learning is a key capability that will help organizations drive optimization and monetization opportunities, and there have been some...
"Storpool does only block-level storage so we do one thing extremely well. The growth in data is what drives the move to software-defined technologies in general and software-defined storage," explained Boyan Ivanov, CEO and co-founder at StorPool, in this SYS-CON.tv interview at 16th Cloud Expo, held June 9-11, 2015, at the Javits Center in New York City.
A strange thing is happening along the way to the Internet of Things, namely far too many devices to work with and manage. It has become clear that we'll need much higher efficiency user experiences that can allow us to more easily and scalably work with the thousands of devices that will soon be in each of our lives. Enter the conversational interface revolution, combining bots we can literally talk with, gesture to, and even direct with our thoughts, with embedded artificial intelligence, whic...
The question before companies today is not whether to become intelligent, it’s a question of how and how fast. The key is to adopt and deploy an intelligent application strategy while simultaneously preparing to scale that intelligence. In her session at 21st Cloud Expo, Sangeeta Chakraborty, Chief Customer Officer at Ayasdi, provided a tactical framework to become a truly intelligent enterprise, including how to identify the right applications for AI, how to build a Center of Excellence to oper...
While some developers care passionately about how data centers and clouds are architected, for most, it is only the end result that matters. To the majority of companies, technology exists to solve a business problem, and only delivers value when it is solving that problem. 2017 brings the mainstream adoption of containers for production workloads. In his session at 21st Cloud Expo, Ben McCormack, VP of Operations at Evernote, discussed how data centers of the future will be managed, how the p...
ChatOps is an emerging topic that has led to the wide availability of integrations between group chat and various other tools/platforms. Currently, HipChat is an extremely powerful collaboration platform due to the various ChatOps integrations that are available. However, DevOps automation can involve orchestration and complex workflows. In his session at @DevOpsSummit at 20th Cloud Expo, Himanshu Chhetri, CTO at Addteq, will cover practical examples and use cases such as self-provisioning infra...
As DevOps methodologies expand their reach across the enterprise, organizations face the daunting challenge of adapting related cloud strategies to ensure optimal alignment, from managing complexity to ensuring proper governance. How can culture, automation, legacy apps and even budget be reexamined to enable this ongoing shift within the modern software factory? In her Day 2 Keynote at @DevOpsSummit at 21st Cloud Expo, Aruna Ravichandran, VP, DevOps Solutions Marketing, CA Technologies, was jo...
As Marc Andreessen says software is eating the world. Everything is rapidly moving toward being software-defined – from our phones and cars through our washing machines to the datacenter. However, there are larger challenges when implementing software defined on a larger scale - when building software defined infrastructure. In his session at 16th Cloud Expo, Boyan Ivanov, CEO of StorPool, provided some practical insights on what, how and why when implementing "software-defined" in the datacent...
Blockchain. A day doesn’t seem to go by without seeing articles and discussions about the technology. According to PwC executive Seamus Cushley, approximately $1.4B has been invested in blockchain just last year. In Gartner’s recent hype cycle for emerging technologies, blockchain is approaching the peak. It is considered by Gartner as one of the ‘Key platform-enabling technologies to track.’ While there is a lot of ‘hype vs reality’ discussions going on, there is no arguing that blockchain is b...
Blockchain is a shared, secure record of exchange that establishes trust, accountability and transparency across business networks. Supported by the Linux Foundation's open source, open-standards based Hyperledger Project, Blockchain has the potential to improve regulatory compliance, reduce cost as well as advance trade. Are you curious about how Blockchain is built for business? In her session at 21st Cloud Expo, René Bostic, Technical VP of the IBM Cloud Unit in North America, discussed the b...
You know you need the cloud, but you’re hesitant to simply dump everything at Amazon since you know that not all workloads are suitable for cloud. You know that you want the kind of ease of use and scalability that you get with public cloud, but your applications are architected in a way that makes the public cloud a non-starter. You’re looking at private cloud solutions based on hyperconverged infrastructure, but you’re concerned with the limits inherent in those technologies.
Is advanced scheduling in Kubernetes achievable?Yes, however, how do you properly accommodate every real-life scenario that a Kubernetes user might encounter? How do you leverage advanced scheduling techniques to shape and describe each scenario in easy-to-use rules and configurations? In his session at @DevOpsSummit at 21st Cloud Expo, Oleg Chunikhin, CTO at Kublr, answered these questions and demonstrated techniques for implementing advanced scheduling. For example, using spot instances and co...
The use of containers by developers -- and now increasingly IT operators -- has grown from infatuation to deep and abiding love. But as with any long-term affair, the honeymoon soon leads to needing to live well together ... and maybe even getting some relationship help along the way. And so it goes with container orchestration and automation solutions, which are rapidly emerging as the means to maintain the bliss between rapid container adoption and broad container use among multiple cloud host...
The cloud era has reached the stage where it is no longer a question of whether a company should migrate, but when. Enterprises have embraced the outsourcing of where their various applications are stored and who manages them, saving significant investment along the way. Plus, the cloud has become a defining competitive edge. Companies that fail to successfully adapt risk failure. The media, of course, continues to extol the virtues of the cloud, including how easy it is to get there. Migrating...
Imagine if you will, a retail floor so densely packed with sensors that they can pick up the movements of insects scurrying across a store aisle. Or a component of a piece of factory equipment so well-instrumented that its digital twin provides resolution down to the micrometer.