Intelligent CISO Issue 52 - Page 9

SANS report reveals cost of human risk to business cybersecurity A report from SANS Security Awareness has revealed that human risk remains the biggest threat to organisations ’ cybersecurity .
CNI organisations must lighten load on cyber teams or risk mass exodus of workforce
U must take steps to ensure cyber leaders have the right budget , skills and tech stack to build out and implement an effective cybersecurity strategy or risk an exodus of skilled cybersecurity professionals , according to new research from UK cybersecurity services firm , Bridewell .
news

SANS report reveals cost of human risk to business cybersecurity A report from SANS Security Awareness has revealed that human risk remains the biggest threat to organisations ’ cybersecurity .

The SANS 2022 Security Awareness Report highlights that with an unprecedented number of employees now working in hybrid or fully remote environments , compounded by an increase in cyberthreats and an overwhelmed workforce , there has never been a more critical time to maintain a cyber-secure workforce .
“ Awareness programmes enable security teams to effectively manage their human risk by changing how people think about cybersecurity and help them exhibit secure behaviours , from the board of directors on down ,” said Spitzner .
“ This report enables security awareness professionals to make data-driven decisions on how to best secure their workforce and speak to leadership about risk in a compelling way that demonstrates value and support for their strategic priorities .”
“ People have become the primary attack vector for cyberattackers around the world ,” said Lance Spitzner , SANS Security Awareness Director and Co-author of the report . “ Humans rather than technology represent the greatest risk to organisations and the professionals who oversee security awareness programmes are the key to effectively managing that risk .”
After analysing the data of more than 1,000 security awareness professionals worldwide , SANS Security Awareness , a global leader in providing security awareness training , has released its seventh annual SANS Security Awareness Report .

CNI organisations must lighten load on cyber teams or risk mass exodus of workforce

K critical national infrastructure ( CNI ) organisations

U must take steps to ensure cyber leaders have the right budget , skills and tech stack to build out and implement an effective cybersecurity strategy or risk an exodus of skilled cybersecurity professionals , according to new research from UK cybersecurity services firm , Bridewell .

The research , which surveyed UK cybersecurity decisionmakers in the communications , utilities , finance , government and transport and aviation sectors , reveals 95 % are experiencing factors that would make them likely to leave their role in the next 12 months . Over four in 10 ( 42 %) feel a breach is inevitable and do not want to tarnish their career , while 40 % say they are experiencing stress and burnout which is impacting their personal life .
The prospect of people leaving jobs is particularly problematic for CNI organisations at a time when the threat of attacks remains high . Over two-thirds of UK CNI cyber leaders say that the volume of threats and successful attacks has increased over the past year and 69 % say it is harder to detect and respond to threats .
Fears of staff leaving are also compounded by the ongoing skills shortage in the sector with 68 % saying it has become harder to recruit the right resources to secure and monitor systems over the past year . Four in 10 say they currently don ’ t have the skills to monitor security threats in the cloud , 31 % don ’ t have the right skills needed to run a modern security operations centre and 28 % believe the don ’ t have the right skills to secure a remote environment . www . intelligentciso . com
9