Security News > 2020 > July > Which workers are your biggest security nightmare? It might not be the people you expect
While some might be quick to moan about the youth of today, PwC suggests that the findings indicate a wider cultural issue around how companies structure workplace cybersecurity training, compounded with the many issues that employees currently face while working from home.
Nearly 70% of CISOs and CIOs surveyed by PwC said they had increased security training as a result of COVID-19; yet only 30% of employees said their employer offered training on the dos and don'ts of protecting company assets and data.
Less than a third of respondents said their employer had provided dedicated devices for doing work at home, and only 23% said their company had "Provided a compelling case for why employees need to have good data security habits."
"Consider implementing a zero-tolerance policy on retribution or creating a channel for people to report security risks anonymously. The more willing people are to report a risk, the faster you can identify and contain the fallout."
At the same time, businesses should amend security policies so that they reflect employees' personal concerns, rather than focusing on implications for the company, PwC said.