I read an article recently published by Egress Software Technologies in the UK. Working with the Information Commissioner’s Office (ICO) in the United Kingdom, 2014 saw a tremendous increase in reported cyber breach incidents which were triggered by human error. Egress reported that: “only 7% of breaches for the period occurred as a result of technical failings……The remaining 93% were due to human error, poor processes and systems in place, and lack of care when handling data.” These are key findings with regard to Cyber Risk.
Egress’s infographic is pretty interesting:
Once the policy is established it’s than important to have an ongoing communication strategy to remind employees of their duties and the importance of maintaining strong digital security. As mentioned, carelessness is a huge and avoidable cyber risk, but it needs to be managed.