Security News > 2021 > April > Having a cybersecurity training program in place isn’t enough to ensure cyber safety

While 59% of employees received cybersecurity training from their companies in response to the COVID-19 outbreak, the survey uncovered that these initiatives have been insufficient.

Cybersecurity training and cyber safety 59% of employees were trained on cybersecurity as a response to the work-from-home shift caused by COVID-19.

Having a cybersecurity training program in place isn't enough to ensure cyber safety: 61% of employees who have received cybersecurity training failed a basic test.

While the survey results show that training has a positive impact on some aspects of employees' cybersecurity habits, such as protecting their computers and correct password management, these effects are not consistent across all areas.

This brings to light some of the "Blind spots" of cybersecurity training programs, which, if left unaddressed, create vulnerabilities that expose employees and their companies to cyber risks and attacks.

"Simply offering a cybersecurity training program does not guarantee a skilled or educated staff. Such programs are usually theoretical, full of technical terms, and, well, boring. Cybersecurity training should be fun, hands-on, and use real-life examples. And this is because staying safe and protected in cyberspace is a hands-on, practical skill," said Victor Kritakis, CISO, TalentLMS. When asked what would make cybersecurity training more engaging, 52% of employees said they would like it to be presented in a simpler and less technical way, while 50% would like it to be more fun and gamified.

News URL

http://feedproxy.google.com/~r/HelpNetSecurity/~3/pPNvXX_fc6w/