As the Chief Information Security Officer, the budget would be allocated mostly to training. I believe that the way my people preserve the integrity of the cyber systems in place is huge. (The Viking Cloud Team, 2025) found that 88% of cyber attacks are due to human error. I find that the reliability of those who could accidentally open avenues to the most secure systems in my company outweighs the need for additional forms of technology. While cyber attackers are always trying to find new ways to hack into systems, I believe we can stay up to date with technology and improve where needed, while also focusing on training the higher-ups on cyber team so they can train those below them. As annoying as constant retraining can be, many companies find it beneficial as long as their employees take the time to learn what’s taught. (Konicaminolta, 2022) said “According to a study conducted by the Advanced Computing Systems Association, also known as USENIX, researchers discovered that employees could still easily spot phishing emails four months after their initial training. But after six months, the same employees began to forget what they had learned.” I think this drives my reasoning and understanding of why the training aspect of cybersecurity within my company would benefit me and the security system in place.
The Cyber teams and their officers that run the departments finding themselves unsure of how to allocate their budgets within their departments should find that training is essential to the protection of their security systems. It has been proven more times than not that through human error hackers can and will gain access to systems. The technology used within these systems is critical, but again the people not being properly informed and trained on the proper use of technology leads to more errors. I think most companies, cyber security aside find that training properly from the beginning of an employee being hard builds a great foundation for the rest of the time there. Training is essential and I believe deserves majority of my limited budget.
REFERENCES
Konicaminolta. (2022, October 18). How Often Should You Conduct Cybersecurity Training? Konica Minolta. https://kmbs.konicaminolta.us/blog/how-often-should-you-conduct-cybersecurity-training/
The Viking Cloud Team. (2025). 170 Cybersecurity Stats and Facts for 2025. Vikingcloud.com. https://www.vikingcloud.com/blog/cybersecurity-statistics