Most SMEs Do Not Provide Cyber Security Training

Small and Medium Enterprises (SME)s face a growing range of cyber security threats and the latest Report by Software Advice highlights the fact that 62% of SME leaders in Briatain have observed a significant increase in cyber threats in the last 2 years.  

Despite the proliferation of cyber attacks, 48% of managers surveyed admitted that their employees have not received any cyber security training in the last 2 years. The evidence strongly suggests that SMEs are not doing enough to protect themselves. 

The study reveals that 22% of SMEs have fallen victim to 1 or more cyber attacks between 2020-2021. Of this increase in attacks, the most common came in the form of phishing (at 57%), followed by malware (54%). Furthemore: 

  • 32% of managers claimed to not have a cyber security program within their company.
  • 50% of SMEs do not have a formal cyber security incident response plan in place.
  •  60% do not have any employee cyber security training. 
  • 24%admitted to never having conducted a security audit.
  • 35% of managers stated that, in case of an attack, they wouldn’t know what to do or how to report it. 

The majority of business leaders think that their employees have too much access to company data and that their biggest concern is about protecting customer data, particularly names, contact information and credit card details. 

  • 25% of respondents stated that their employees don’t have access to all data, but to more data than is strictly necessary to perform their job.
  • 23% admitted that employees have access to all company data. 

Considering that over 60% of SMEs have experienced an increase in cyber threats in the last 2 years, it becomes clear that inadequate cyber security measures are a major risk for many SMEs.

  • 48% of respondents have not received any recent cyber security training.
  • 38% of respondents stated that a lack of budget was the main barrier preventing companies from being able to protect themselves against cyber attacks. 
  • 33% referred to a lack of skilled IT personnel.
  • 27% blames low-security awareness among employees.

As cyber attacks are becoming more common as companies and their customers share more data online and  remote working compromises company security systems, the lack of adequate cyber security training for employees more should be a much more urgent priority for SMEs. 

FCC.Gov:         Gov.UK:        Software Advice:      FE News:        FSB Skills Hub:      

You Might Also Read: 

Is Cyber Training Fit For Purpose?:

 

« Online Fraud Is A British Security Nightmare
An Invasion Of Ukraine Might Coincide With Cyber Attacks On Western Banks »

CyberSecurity Jobsite
Perimeter 81

Directory of Suppliers

Authentic8

Authentic8

Authentic8 transforms how organizations secure and control the use of the web with Silo, its patented cloud browser.

IT Governance

IT Governance

IT Governance is a leading global provider of information security solutions. Download our free guide and find out how ISO 27001 can help protect your organisation's information.

Jooble

Jooble

Jooble is a job search aggregator operating in 71 countries worldwide. We simplify the job search process by displaying active job ads from major job boards and career sites across the internet.

Perimeter 81 / How to Select the Right ZTNA Solution

Perimeter 81 / How to Select the Right ZTNA Solution

Gartner insights into How to Select the Right ZTNA offering. Download this FREE report for a limited time only.

CSI Consulting Services

CSI Consulting Services

Get Advice From The Experts: * Training * Penetration Testing * Data Governance * GDPR Compliance. Connecting you to the best in the business.

Security Weekly

Security Weekly

Security Weekly provides free content within the subject areas of IT security news, vulnerabilities, hacking, and research.

Cloud Foundry Foundation (CFF)

Cloud Foundry Foundation (CFF)

Cloud Foundry supports the full application development lifecycle, from inception, through all testing stages, to deployment.

Malta Information Technology Agency (MITA)

Malta Information Technology Agency (MITA)

MITA is the central driver of Government Information and Communications Technology (ICT) policy, programmes and initiatives in Malta.

Sera-Brynn

Sera-Brynn

Sera-Brynn is one of the highest-ranked, pure-play cybersecurity compliance and advisory firms in the world.

RHEA Group

RHEA Group

RHEA Group offers aerospace and security engineering services and solutions, system development, and technologies including cyber security.

CryptoCurrency Certification Consortium (C4)

CryptoCurrency Certification Consortium (C4)

The CryptoCurrency Certification Consortium is a non-profit organization that provides certifications to professionals who perform cryptocurrency-related services.

astarios

astarios

astarios provide near-shore software development services including secure software development (DevSecOps), quality assurance and testing.

Measured Insurance

Measured Insurance

Measured Insurance are bridging the gap between technology and Insurance using AI-Powered analytics that track clients’ exposure in real time to create smarter insurance products.

Netsurion

Netsurion

Netsurion powers secure and agile networks for highly distributed and small-to-medium enterprises and the IT providers that serve them.

CAPSLOCK

CAPSLOCK

CAPSLOCK delivers career-changing cyber training to help adults re-skill. Learn online to become a cyber security professional and pay no tuition until you land a high-paying job.

Rede Nacional CSIRT

Rede Nacional CSIRT

Rede Nacional CSIRT is a national network of CSIRTs in Portugal aimed at cooperation and mutual assistance in the handling of incidents and in the sharing of good security practices.

Nanitor

Nanitor

Nanitor is a powerful cybersecurity management platform focusing on hardening security fundamentals across your global IT infrastructure.

Tarlogic

Tarlogic

Tarlogic works to protect and defend your security with the highest quality technical team with next generation solutions to achieve the best protection.

Davinsi Labs

Davinsi Labs

Davinsi Labs helps companies achieve Digital Service Excellence with specialized Security Intelligence and Service Intelligence solutions.

Intelequia

Intelequia

Intelequia SOC is the Security Operations Center your company needs. 24x7 monitoring, protection and automated response to cyber threats.

Security Awareness Special Interest Group (SASIG)

Security Awareness Special Interest Group (SASIG)

The Security Awareness Special Interest Group (SASIG) addresses the human aspects of security and fraud prevention in an initiative to improve trust and confidence in the online environment.