Building a security culture in any organization takes a long time. Most employees think either that ensuring security is the job of the cybersecurity team or they are not aware of their specific role in helping ensure a secure organization. There is also a general perception around the fact that security is a very complex technical topic and best dealt by cybersecurity professionals. In reality, the cybersecurity teams are just the catalystswho drive the change towards building a security-first culture.
The power to uphold the change lies with all employees and stakeholders who are performing different roles within the organization. They need to be fully aware of their role and must be empowered to execute those effectively. Employees need to demonstrate exemplary behavior on following the security best practices so that they do not fall prey to social engineering attacks. Do you know Google has registered a whopping 2,145,013 phishing sites as of Jan 17, 2021 (up 27% over last 12 months)? Besides, Phishing attacks account for more than 80% of reported security incidents today, with $17,700 lost every minute due to phishing attacks!
The IT and Information Security…
