Intelligent CIO Europe Issue 79 | Page 27

INFOGRAPHIC or AI-powered cyberthreats adequately . In a world where AI is expediting and increasing the scale of attacks , this is alarming .
Daniel Blank , COO of Hornetsecurity , said : “ Our latest research shows a clear disconnect between the perceived effectiveness of security training and its actual relevance and responsiveness to modern cyberthreats , especially the recent boom in AI-driven attacks . Employees must be equipped with on-going training to bolster any technical defences and serve as a human firewall . The on-going aspect is essential for the training to have the most impact . It ’ s important to invest in the latest cybersecurity technology , but a sustainable security culture means investing in people as well .”
Post-incident adaptations and reporting gaps
The survey found that one in four organisations had suffered a cybersecurity breach or incident – 23 % of which had occurred in the last year . Notably , 94 % of these organisations took steps to strengthen their security by implementing additional controls post-incident . Yet , despite these efforts , 52 % of respondents noted that end-users often ignore or delete identified email threats without reporting them , and 38 % forget the training content , showing the need for on-going and engaging training enhancements .
The survey highlighted that people are particularly interested in more effective post-training resources , which could help in retaining and applying the learned security measures . Another area for improvement is feedback on reported threats , with 28 % stating the lack of feedback as a reason for not adhering to training protocols .
“ Proactivity is key : instead of strengthening after incidents , organisations should pre-empt attacks and have robust systems and processes in place . Doing so saves significant time , effort and cost .”
Cyber-insurance and preventative measures
Over half of the surveyed organisations ( 56 %) now use cyber-insurance , indicating a growing reliance on financial safeguards against cyber-incidents . Additionally , 79 % of organisations attribute the prevention of cybersecurity incidents directly to their IT security training programmes , while 92 % acknowledge
that the training has enabled end-users to spot security threats across various media , not just email . p
The need for updated training
A significant 45 % of decision-makers in IT believe their current training programmes are outdated and ineffective against AI-powered attacks . This sentiment is echoed by 39 % of general respondents , showing a critical need for training content that is both current and comprehensive .
Blank added : “ It ’ s imperative that organisations not only provide regular , engaging and adaptive training but also ensure that these programmes thoroughly address the latest and most sophisticated cyberthreats . This is why we developed Hornetsecurity Security Awareness Service , a next-gen solution that delivers the right amount of training customised per employee in an automated way . That way , organisations can provide the right level of on-going training without draining IT resources to set this up and deliver it .
It ’ s imperative that organisations not only provide regular , engaging and adaptive training but also ensure that these programmes thoroughly address the latest and most sophisticated cyberthreats .
www . intelligentcio . com INTELLIGENTCIO EUROPE 27