The Human Element in Cybersecurity

The risk of human error is greater than ever in today’s enterprise environment. With a dramatic change in the working conditions of thousands of individuals now accessing office networks at home, the cybersecurity landscape has changed in rapid and unpredictable ways. With most data breaches occurring both in homes and companies caused by human error, how can CISOs overcome these challenges?

New Challenges in the Global Cybersecurity Landscape

A recent interview with the Director of the National Security Agency and Commander of U.S. Cyber Command Gen. Paul Nakasone highlighted the importance of updating national cybersecurity defenses. One facet of this approach is promoting awareness amongst individuals, agencies, and especially businesses. 

Nakasone mentioned that while our nation’s cyber-readiness has improved over the last few months, there is still a long way to go in ensuring public and private entities maintain an acceptable level of cyber risk. Specifically, more improvement needs to be made to protect networks and educate users both in and out of the office to decrease the considerable threat landscape facing businesses and consumers. 

So, while you’re thinking about the one organization you’re responsible for, realize it’s a much larger problem; your organization is just a piece of a significant global threat.

Security Challenges Our Organizations Now Face

On the one hand, flexible hybrid workspaces are a means to an end, ensuring employee safety during the pandemic. However, as more and more employees become fully vaccinated, the nature and role of hybrid workspaces are becoming more fluid.

Convenience is not without its drawbacks; the very nature of hybrid workspaces makes them vulnerable to an array of cybersecurity threats which can include: 

  • Weaker security controls and an increased spike in cyber attacks. With an increase of cloud-based systems used for remote work, hackers have now moved towards these adaptable systems, with a massive 630% increase in cloud service attacks in the first quarter of 2020.
  • Increases in Human Error.  Working at home can cause distractions that play a significant role in security issues, especially as many families grapple with lack of childcare, remote learning, and other issues that lead to a less-than-ideal remote working environment. Web-based phishing attacks take only one click to create a breach, becoming a heightened and effective method many cybercriminals use to target these individuals. An accidental misclick from a distracted user could cost your organization millions.

Developing a Plan to Mitigate the Risk of Human Error

Human error is an unavoidable issue. While it may not be something you can completely stop in your workplace, this risk can dramatically decrease with the proper education and training given to staff, as KnowBe4 discusses in their rich library of information and resources.

If you want to learn more about how to reduce your organization’s risk of human error in a time of vulnerability, make sure to join our upcoming Spotlight on Cybersecurity on January 12th, sponsored by KnowBe4 with key speakers including Co-Founder of Maxwell Rutul Dave, Data-Driven Defense Evangelist Roger Grimes, and Chief Trust Officer at Atlassian Adrian Ludwig.

Photo by Bermix Studio on Unsplash

Privacy Notice

This privacy notice discloses the privacy practices for (www.ascentconf.com). This privacy notice applies solely to information collected by this website. It will notify you of the following:

  • What personally identifiable information is collected from you through the website, how it is used and with whom it may be shared.
  • What choices are available to you regarding the use of your data.
  • The security procedures in place to protect the misuse of your information.
  • How you can correct any inaccuracies in the information.

Information Collection, Use, and Sharing

We are the sole owners of the information collected on this site. We only have access to/collect information that you voluntarily give us via email or other direct contact from you. We will not sell or rent this information to anyone.

We will use your information to respond to you, regarding the reason you contacted us. We will not share your information with any third party outside of our organization, other than as necessary to fulfill your request, e.g. to ship an order.

Unless you ask us not to, we may contact you via email in the future to tell you about specials, new products or services, or changes to this privacy policy.

Your Access to and Control Over Information

You may opt out of any future contacts from us at any time. You can do the following at any time by contacting us via the email address or phone number given on our website:

  • See what data we have about you, if any.
  • Change/correct any data we have about you.
  • Have us delete any data we have about you.
  • Express any concern you have about our use of your data.

Security

We take precautions to protect your information. When you submit sensitive information via the website, your information is protected both online and offline.

Wherever we collect sensitive information (such as credit card data), that information is encrypted and transmitted to us in a secure way. You can verify this by looking for a lock icon in the address bar and looking for “https” at the beginning of the address of the Web page.

While we use encryption to protect sensitive information transmitted online, we also protect your information offline. Only employees who need the information to perform a specific job (for example, billing or customer service) are granted access to personally identifiable information. The computers/servers in which we store personally identifiable information are kept in a secure environment.

If you feel that we are not abiding by this privacy policy, you should contact us immediately via telephone at 202-256-9707 or [email protected].