Human Factor Write-up

Posted by jgonz043 on

Jose Gonzalez

11/20/2022

Training vs. Cybersecurity Technology

BLUF

Everyday there companies become more prone to experiencing cybersecurity attacks. This is partially due to the lack of spending to protect their systems and the lack of knowledge the workers have on this topic. Companies need to spend more of their money and focus on protecting their systems.

The Importance of Training

Many companies lack the cybersecurity training needed to sustain a well built company. “Research suggests that human error is involved in more than 90% of security breaches” (). The employees need to learn about the risks and different forms of malicious attacks from hackers. And they need to learn how to mitigate and avoid them. Falling for these attacks can hurt companies in many ways but two big ways are financially and it can hurt their reputation. Companies also need to be actively testing their employees with things such as phishing tests. To conclude, companies should take extra precautions to train their employees to maintain their company.

The Importance of Cybersecurity Technology

Companies need to set enough money aside to improve their servers and cybersecurity systems. If a hacker gets into the systems of a company it can ruin a company. Adding more protection on systems is never a bad use of money. Improving the security of their systems would include adding firewalls, installing regular updates, using two-factor authentication, and running antivirus software. Those are only a few ways, there are plenty of other tactics to use and ways to protect your systems.

Splitting the Budget

One of the most difficult choices a company has to make is how to split their budget. The budget from a cybersecurity standpoint should be split between training employees and using the money to improve the systems of a company. I would split this about 35% in improving systems and 65% in training employees. Since most company security breaches are due to human error it would be best to prioritize training of workers. This would be used to pay for classes or other ways to help improve the knowledge of the workers. The rest of the money would be used to implement protection on servers to limit unwanted access and prevent hackers from getting in the systems. 

Conclusion

Companies need to begin focusing on the cyber threat before it’s too late. They need to start focusing on training their employees to prevent simple attacks. They should also begin improving their systems so that they can be protected from more sophisticated attacks. Improvement in these areas can result in longer lasting companies with good reputations.

References

What is Cyber Security & Importance of Cyber Security | Simplilearn. (n.d.). 

Simplilearn.com. https://www.simplilearn.com/tutorials/cyber-security-tutorial/what-is-cyber-security

Mimecast. (n.d.). What is Security Awareness Training and Why is it 

Important? | Mimecast. Www.mimecast.com. https://www.mimecast.com/content/what-is-security-awareness-training/

Leave a Reply

Your email address will not be published. Required fields are marked *