Allocating Funds Between Training and Technology

Posted by mharr088 on

BLUF
With a certain amount of funds available, 55-65 percent of the funding is allocated to
human training, with the remaining funds supporting additional cybersecurity technologies.
Introduction
Cybersecurity is an ongoing development that changes daily. With the number of cyber
attacks increasing, companies must find a way to balance human training with the addition of
more cybersecurity technology. Allocating a large majority of funds to focus on one aspect rather
than the other would be pointless; for example, having the newest cybersecurity technology with
little human training will lead to inefficiency, and vice versa if the funding were reversed.
Training versus having additional Cybersecurity technology
A slightly higher funding rate allocated to human training rather than additional
cybersecurity technologies is more effective, as most cyber attacks are often due to human errors.
Additionally, a complex system may lead to confusion during training, disrupting the business
flow. In cybersecurity, there is a strong emphasis on technology, focusing on using the most
modern solutions to minimize vulnerabilities and risks present in previous technologies. Most
cyber-attacks are due to human error, which leads to the point of focusing the funding on
training. Having trained employees is also important because, in the event of a cyber attack, they
are more successful in dealing with incident response. According to the article, “Using linear
regression on data breach incidents reported in the United States of America from 2009 to 2017,
the study validates human factors as a weak point in information security that can be extended to
the Internet of Things by predicting the relationship between human factors and data breach
incidents, and the strength of these relationships.” (Hughes-Larty et al., 2021)
Conclusion
Investing in human training is more beneficial than investing in additional cybersecurity
technology for employees’ workspaces and finances. Depending on the company, 65- 55 percent
of human training would get the best results. Modern cyber technology is important, so the
funding is not dramatically low; being behind in cybersecurity will always pose a significant
security risk.

Leave a Reply

Your email address will not be published. Required fields are marked *