Security would be easy without users.
That statement is as absurd as it is true. It’s also true that business wouldn’t be possible without users. It’s time to look at the big picture when it comes to cybersecurity.
In addition to dealing with every new risk, vulnerability and attack vector that comes along, cybersecurity pros need to understand their own fellow employees – how they think, how they learn and what they really want.
The human element — the individual and social factors that affect cybersecurity — are as important as technology in protecting against malicious cyberattacks. And yet, in general, most cybersecurity professionals are far more adept, knowledgeable and focused on the technology side.
However, “human failure” will be responsible for over half of all major cyber incidents over the next three years, according to a Gartner report.
And so we find ourselves heading into another season of growing cyberattacks with a gross mismatch between the focus of cybersecurity professionals and the factors that protect against it.
It’s time for a reset.
NIST’s 6 Most Common Security Pitfalls
In a recent article by the National Institute of Standards and Technology (NIST), computer scientist Julie Haney focused on the misconceptions commonly held by security specialists about users. As an expert in both cybersecurity technology and the human factor, Haney noted that those misconceptions were mostly about communicating with users.
Called “Users Are Not Stupid: Six Cyber Security Pitfalls Overturned,” the paper highlighted the basics of how and why to partner with users, ra ..
Support the originator by clicking the read the rest link below.
