Most SMEs Do Not Provide Cyber Security Training

Uploaded on 2022-02-14 in JOBS-Training, FREE TO VIEW

Small and Medium Enterprises (SME)s face a growing range of cyber security threats and the latest Report by Software Advice highlights the fact that 62% of SME leaders in Briatain have observed a significant increase in cyber threats in the last 2 years.  

Despite the proliferation of cyber attacks, 48% of managers surveyed admitted that their employees have not received any cyber security training in the last 2 years. The evidence strongly suggests that SMEs are not doing enough to protect themselves. 

The study reveals that 22% of SMEs have fallen victim to 1 or more cyber attacks between 2020-2021. Of this increase in attacks, the most common came in the form of phishing (at 57%), followed by malware (54%). Furthemore: 

  • 32% of managers claimed to not have a cyber security program within their company.
  • 50% of SMEs do not have a formal cyber security incident response plan in place.
  •  60% do not have any employee cyber security training. 
  • 24%admitted to never having conducted a security audit.
  • 35% of managers stated that, in case of an attack, they wouldn’t know what to do or how to report it. 

The majority of business leaders think that their employees have too much access to company data and that their biggest concern is about protecting customer data, particularly names, contact information and credit card details. 

  • 25% of respondents stated that their employees don’t have access to all data, but to more data than is strictly necessary to perform their job.
  • 23% admitted that employees have access to all company data. 

Considering that over 60% of SMEs have experienced an increase in cyber threats in the last 2 years, it becomes clear that inadequate cyber security measures are a major risk for many SMEs.

  • 48% of respondents have not received any recent cyber security training.
  • 38% of respondents stated that a lack of budget was the main barrier preventing companies from being able to protect themselves against cyber attacks. 
  • 33% referred to a lack of skilled IT personnel.
  • 27% blames low-security awareness among employees.

As cyber attacks are becoming more common as companies and their customers share more data online and  remote working compromises company security systems, the lack of adequate cyber security training for employees more should be a much more urgent priority for SMEs. 

FCC.Gov:         Gov.UK:        Software Advice:      FE News:        FSB Skills Hub:      

You Might Also Read: 

Is Cyber Training Fit For Purpose?:

 

« Online Fraud Is A British Security Nightmare
An Invasion Of Ukraine Might Coincide With Cyber Attacks On Western Banks »

CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Go Cyber

Training that transforms behaviours

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

Syxsense

Syxsense

Syxsense brings together endpoint management and security for greater efficiency and collaboration between IT management and security teams.

North Infosec Testing (North IT)

North Infosec Testing (North IT)

North IT (North Infosec Testing) are an award-winning provider of web, software, and application penetration testing.

Directory of Cyber Security Suppliers

Directory of Cyber Security Suppliers

Our Supplier Directory lists 7,000+ specialist cyber security service providers in 128 countries worldwide. IS YOUR ORGANISATION LISTED?

CSI Consulting Services

CSI Consulting Services

Get Advice From The Experts: * Training * Penetration Testing * Data Governance * GDPR Compliance. Connecting you to the best in the business.

Authentic8

Authentic8

Authentic8 transforms how organizations secure and control the use of the web with Silo, its patented cloud browser.

Magal Security Systems (Magal S3)

Magal Security Systems (Magal S3)

Magal Security Systems is a leading international provider of integrated solutions and products for physical and cyber security, safety and site management.

Network Integrity Systems

Network Integrity Systems

Network Integrity Systems is a leader in network infrastructure security and offers solutions specifically developed for Government and Private Enterprise.

VerSprite

VerSprite

VerSprite is a specialist information security consulting firm. We provide organizations with detection across all their attack surfaces and deliver critical insight into all possible attack methods.

Pixalate

Pixalate

Pixalate is an omni-channel fraud intelligence company that works with brands and platforms to prevent invalid traffic and improve ad inventory quality.

ECOLUX

ECOLUX

ECOLUX is a professional IoT security service company committed to developing world-leading “IoT Lifecycle Security” technologies and products.

Bradley-Morris

Bradley-Morris

Bradley-Morris is a leading recruiting firm specializing in transitioning military and veteran talent into civilian careers including Cybersecurity.

oneclick

oneclick

oneclick is a central access and distribution platform in the cloud, enabling the management of the entire technology stack for application provisioning.

TechDemocracy

TechDemocracy

TechDemocracy are a trusted, global cyber risk assurance solutions provider whose DNA is rooted in cyber advisory, managed and implementation services.

Kinetic Investments

Kinetic Investments

Kinetic Investments is a venture capital firm dedicated to early-stage companies that are transforming the digital landscape.

1Kosmos

1Kosmos

1Kosmos provide Digital Identity and Passwordless Authentication for workforce and customers. Powered by advanced biometrics and blockchain technology.

Gotham Digital Science (GDS)

Gotham Digital Science (GDS)

Gotham Digital Science is an international security services company specializing in Application and Network Infrastructure security, and Information Security Risk Management.

Def-Logix

Def-Logix

Def-Logix was founded in 2008 to help solve cyber threats being experienced by government agencies of the United States.

Certo Software

Certo Software

Certo are trusted experts in mobile security. At Certo, mobile security is not an afterthought, it’s what we do.

MajorKey Technologies

MajorKey Technologies

MajorKey improves security performance by reducing user friction and business risk, empowering your people, and protecting your IP.

Levio

Levio

Levio is a digital native business and technology consulting firm. As a true partner from start to finish, our goal is a long-lasting transformation that’s right for your business model.

Helix Tech Consulting

Helix Tech Consulting

Helix Tech have expertise in a wide range of technology areas, including IT strategy, infrastructure design, cybersecurity, disaster recovery, cloud, data centers, IT cost optimization, and more.