Both technical teams and general staff need more frequent guidance on recognising and dealing with cybersecurity threats.
New research by global technology services provider Claranet has revealed that six in ten organisations (61 per cent) believe that their general workforces need much more training in cybersecurity awareness. Somewhat alarmingly, 38 per cent of respondents said that their software development teams also need a great deal more training in this area, and 29 per cent said the same is required for IT operations teams. This evidence underlines how much more needs to be done--even within technical teams--to eliminate this skills shortage and bring internal cyber awareness levels up to a point where threats can be effectively countered.
The survey was carried out by Vanson Bourne and surveyed 100 IT decision-makers from a range of UK businesses with more than 1,000 employees. According to the findings, 61 per cent of general staff have not had full IT security training. This figure is lower for software development teams (38 per cent) and IT operations teams (29 per cent), but shows that training coverage is still by no means comprehensive.
For Neil Thomas, Group Security Services Director at Claranet, this shows how businesses need to do more to increase their training capabilities and reduce the potential for human error to lead to costly data breaches.
Thomas said: "Most business leaders are aware of the need for effective cybersecurity measures to counter the constantly evolving threat landscape, but this research shows that efforts to train staff still haven't been as effective as they could be. This is critical for all technical teams but general awareness across all business functions is also extremely important."
The findings from the research also suggest that there is a disconnect between the faith that businesses have in their cybersecurity technology and their general awareness of the organisation's security risk profile it is there to protect. 84 per cent of respondents said that they have confidence in their breach detection systems if company data is compromised. However, over a third (36 per cent) said that their organisation's IT security risk profile is not well understood.
For Thomas, this suggests...