Cybersecurity experts agree that people are the weakest link in the cybersecurity chain. Training your people is key to any defense in depth strategy and one of the three pillars of cybersecurity — people, process, and technology.
According to Gartner, “Clients that treat security education as an inherently unproductive investment are a diminishing group, and the overall market is increasingly focused on security education that is proven to be effective and efficient at driving enterprise security performance.”
Cybersecurity is Everyone’s Job, published by the National Institute of Standards and Technology (NIST), outlines what each member of an organization should do to protect it from cyber threats, based on the types of work performed by the individual. It is aligned with the strategic goals of the National Initiative for Cybersecurity Education (NICE), a program of the National Institute of Standards and Technology (NIST).
The publication is an excellent resource for leaders interested in reducing cyber risks by effectively engaging their workforce as it includes sections on building a cyber-secure culture, common tasks for everyone, methodology and additional references.
If you need help strengthening your human cybersecurity shield, contact ACE IT Solutions. We provide organizations with security awareness training and simulated phishing solutions to mitigate the risks of these inadvertent internal cyberattacks. To boost your cybersecurity posture, contact ACE IT Solutions at 646.558.5575 and ask about getting started with our phishing testing and security awareness training program.