There are a vast number of debates with human factors within the cybersecurity realm. For many reasons stated by Capone (2018), “while people are certainly an important aspect of data security and serve as critical administrators, humans cannot serve as the be-all-end-all.” Human intelligence goes beyond what is believed to be honest and forthright, though serves as useful components in monitoring threats. A statistic from the In tel study, 43 percent of data breaches are caused from within organizations and businesses and are done both accidentally and purposefully.
With a limited budget, technology and human contribution would have to work simultaneously to ensure data remains secure and accounted for, with the proper management to handle security threats. This process would begin and end with technology, as human impact poses a greater threat to data. Cyberbitsec.org states that with new behavioral science methods this could focus “not only on risks and vulnerabilities but also on how humans perceive them and how these perceptions can misrepresent that actual threat leading to under-or overreaction when a response to threats are formulated.” As humans are a cheaper and vital tool in protecting and monitoring data, unfortunately, the faith of security cannot stem solely from one entity alone. “Security needs to start when and where content is created” mentions Capstone (2018.) This is imperative that two vast forces work alongside one another to ensure protection against threats. This is only because humans are entities capable of emotions and outside influences.
Training would be used as a way to introduce existing technology and processing in coherence with existing technology that is being utilized in that field. To counteract the tradeoff there would be an increase in technology and a fewer number of human interactions to counteract the possibility of human interference and human error. The use of human error is minuscule but it is still a possibility. Cyberbitsec.org states the importance of technology but also the great benefit as a tool for cybersecurity criminals. This tool is not utilized and threatened harshly, it only makes way through its social and psychological impact like a phishing email. Criminals now are relying on psychological tools for implementing attacks. Humans remain behind the spectrum of intelligence as technology and cybersecurity become more advanced.
With the right team and the appropriate use of technology, data can be accounted for and protected at a reasonable balance.
References:
Capone, J. (2018) The Impact of human behavior on security
https://docs.google.com/document/d/1J3v_V167mktbGVynbtHW8yHXW9onjaBzVASo-behDfY/edit
Why is Cybersecurity About Human Behavior? Cyberbitsetc.org