The Human Factor in Cybersecurity

Posted by djime005 on

When allocating funds between technology and training in the cybersecurity field, there
should be a 65 to 35 percent ratio. This means 65% of the funds going to the cyber department should be used for better technology and upgraded defense systems, and the remaining 35% should be used for training. When allocating funds, there are a lot of considerations and factors; however, the main end goal is how the company can be the most secure in the most efficient way. We do this with a 65-35 percent split because technology stops most of the basic and frequent attacks; however, 35% still needs to go to training because people need to know how to monitor and use the technology to maximum efficiency.


Benefits of Technology
There are a lot of benefits to developing technology and training, but the better benefits are in developing technology. The best benefits are the most obvious upgrades and developments. This includes multi-factor authentication (MFA), patching software, having available and reliable backups, and good anti-virus (Srėbaliūtė, 2024). These things make it so that stolen passwords aren’t enough to cause harm, known weaknesses can be fixed, nothing gets lost or tampered with, and no basic virus can get through. In addition to those things, with more money being used, email filtering, log monitoring, and limiting admin privileges can be added, and this will make a huge difference, making the system very secure.


Benefits of Training
Even though there aren’t as many benefits in training as there are in technology, there are still key things that must be taught to employees. The most valuable training shows employees how to spot phishing emails, handle passwords safely, and what to do when something looks suspicious (Swain, 2024). With these things being taught, major emergencies happening becomes less of a possibility with better prevention practices. Also, when a major emergency does happen, high-level training is needed so that there is no panic factor in defending against an attack. These are important things that money should definitely go towards, just not as much money as is being put into technology.


Summary
In conclusion, there needs to be a 65-35 percent ratio when allocating between all total funds being poured into the cybersecurity department. This is because both are important, so it shouldn’t be unbalanced; however, there still needs to be more money going towards technology because technology has better and more benefits than training.


Sources Cited

Srėbaliūtė, A. (2024, August 29). Cost-benefit analysis of cybersecurity spending. NordLayer Blog. https://nordlayer.com/blog/cost-benefit-analysis-of-cybersecurity-spending/


Swain, E. (2024, August 14). The importance of cybersecurity training. Lingio. https://www.lingio.com/blog/the-importance-of-cybersecurity-training

Leave a Reply

Your email address will not be published. Required fields are marked *