Security News > 2022 > July > How to spot your biggest security threat? Just look out for the humans
How would you describe the biggest security threat to your organization? Perhaps you envision a faceless cybercrime syndicate or hostile state.
As SANS Institute senior instructor Lance Spitzner explains in this analysis of Verizon's latest Data Breach Incident Report, your biggest security threat is actually the humans you work with day in, day out.
The VZ DBIR has provided a global, vendor neutral insight into the most common drivers of cyber security incidents and breaches for the last 15 years, enabling IT and business leaders to make data driven decisions on the greatest risks facing their organizations, and how to manage them.
You can ensure those risks are baked into your overall security strategy by developing a Security Awareness Maturity Program that doesn't just seek to make people comply with a series of tick boxes, but actively changes their behavior and ultimately creates a secure culture.
You can start with SANS Institute's course, Managing Human Risk: Mature Security Awareness Programs, which draws lessons from hundreds of such programs around the world.
All of which will set you on the path to not just changing your workforce's security behavior but changing its underlying culture.
News URL
https://go.theregister.com/feed/www.theregister.com/2022/07/05/how_to_spot_your_biggest/
Related news
- Cisco’s Splunk Acquisition Should Help Security Pros See Threats Sooner in Australia and New Zealand (source)
- Machine identities lack essential security controls, pose major threat (source)
- Beyond Threat Detection – A Race to Digital Security (source)
- SASE Threat Report: 8 Key Findings for Enterprise Security (source)
- Third-party vendors pose serious cybersecurity threat to national security (source)
- SELKS: Open-source Suricata IDS/IPS, network security monitoring, threat hunting (source)