The Human Factor in Cybersecurity

Posted by bogbo001 on
Basil Ogbomoh
3/25/2024
Write Up – The Human Factor in Cybersecurity

When you have a limited budget for cybersecurity it is important to prioritize investments strategically, so you can maximize the effectiveness of the resources that you have. Human contribution can be a good thing and a bad thing. In the early topics we have discussed how humans can have a positive and negative impact on the world of cybersecurity. It is important to balance the tradeoff between training and additional cybersecurity technology.

Focus on Employee Training and Awareness
This would be where I allocate a significant amount of the budget. I would invest in cybersecurity training and awareness programs for the employees. Investing time and money would help empower the employees to recognize and treat security threats, such as phishing, malware infections, etc. Not only will training the employees the correct way, but it may also deter them from doing any harm from within the company. Humans are susceptible to social engineering attacks, which is why it is important to train and prepare employees for these types of threats. Errors and data leaks can cause companies to lose millions of dollars.

Invest in Foundational Technologies
In earlier modules, we talked about how important technology is for running certain things, like phones, water pumps, traffic lights, etc (Cybersecurity Vulnerability: The Human Element, 2023). Running these types of technologies is expensive and the security to run these are based on human factors. I would allocate a portion of the budget to invest in foundational cybersecurity technologies that provide essential protections and controls. I would implement antivirus/antimalware software, firewalls, intrusion detection/prevention systems, and vulnerability management tools. Making sure you protect these technologies will ensure you have a great defense against various cyber threats.

Incident Responses
I would allocate the least amount of the budget to incident responses. What this means is that I would set aside money just in case a threat emerges or a system gets shut down. Investing in incident response capability ensures that the organization can effectively detect, contain, and respond to cybersecurity incidents in a timely manner, minimizing the impact on operations and reputation(Retrieved March 25, 2024). Regular reviews and assessments help ensure that limited resources are being allocated optimally to address the more pressing challenges. By prioritizing investments in both employee training and cybersecurity technologies, organizations can achieve a balanced approach to cybersecurity that strengthens defense and mitigates risk within my budget.



References
(n.d.). Wikipedia. Retrieved March 25, 2024, from https://umbrella.cisco.com/info/threat-trends-report-cryptomining-malware-phishing-trojans?utm_medium=search-paid&utm_source=google&utm_campaign=UMB_AMER_NA_EN_GS_Nonbrand_Threats&utm_content=UMB-FY21-Q4-content-ebook-2021-cyber-security-threat-trends&_bt=
Cybersecurity Vulnerability: The Human Element. (2023, March 27). LinkedIn. Retrieved March 25, 2024, from https://www.linkedin.com/pulse/cybersecurity-vulnerability-human-element-isogent


Leave a Reply

Your email address will not be published. Required fields are marked *