Best Practice in Raising Cybersecurity Awareness across Large Organizations
An increasing body of research indicates that many cybersecurity measures are not effective because they are either ignored, bypassed or incorrectly implemented. But intuitively, many of us already recognise this by the examples seen daily in the Press of serious security data breaches and cybercrimes. Whatever we are doing is not entirely working. Despite the vast sums of money spent, IT systems and networks at all levels and within most organisations remain inherently vulnerable to even the most basic of security weaknesses and vulnerabilities. This is because we have focused almost entirely on the technical firewall for so long now. But rarely have we attended in any meaningful way to the human firewall. At this SASIG workshop, we showcased successful ways in which large organisations have engaged with their workforce and extended enterprise, raised awareness amongst their employees, customers and suppliers.