Cybersecurity Human Factors

Posted by bholl020 on

Brennan Hollowell 11/09/2023

Chief Informations Security Officer Budget

The Human Factors are the real reason we need to have cybersecurity in the first place. Though of course that is just how it is and it’s a good thing cybersecurity exists. There are people who want to harm and hack companies and people and then there is the human error when trying to secure cyber technology. So many things can and will go wrong which is why companies and organizations have a Chief Information Security Officer to mitigate the risks they cannot solve everything but they are needed. As a Chief Information Security Officer with a minimum budget and balancing the tradeoff of cybersecurity technology and training there are many things I would do. First I would make it more of a priority to train people sure technology can prevent attacks but who is going to make sure it all runs smoothly and properly, the staff. I believe having a well trained staff by having regular testing, reviews, and enforcement would be better than more technology. If everyone knew the policies and how to follow them there would be a lot less error while there still would be some I believe with more training the odds of a human error would be a lot lower. There would be a surprise testing randomly every so often to make sure everyone is following and understands the policies. The policies would be very straightforward and easy to understand so that there is not any confusion of how to do your job. There would be a big enforcement if there is an error and depending on how big of the mistake would determine the punishment maybe taking a small percentage out of their paycheck but that would only be for big mess ups and if it was a major error they would be fired. How I would budget it all is to have about eighty percent of funding going into training and the remaining twenty percent be allocated to the technology. Technology is more expensive than hiring and training individuals the way of the job and having a better team making sure everything goes good is better than relying on technology to not mess up. 

Conclusion

There really is not enough of a budget for a Chief Information Security Officer but that is how it is. In my personal opinion it is better to have a good action team rather than cybersecurity technologies because it dosen;t matter how much technology you have if no one knows how to use it. Honestly it doesn’t matter what ways you choose to mitigate risks there is always going to be hackers or some other cyber criminal. But there is a way to stop them and that is what is being done by hiring more qualified individuals to prevent it from happening as best they can. 

Leave a Reply

Your email address will not be published. Required fields are marked *