Senior Managers Need Higher Cyber Security Awareness Than Other Employees

Uploaded on 2023-10-30 in TECHNOLOGY--Resilience, FREE TO VIEW

Cyber security awareness is finally increasing across senior managers, according to data from specialist cyber security training firm, SoSafe. With 50% of companies having been victims of hacking over the last 3 years, cyber risks are more and more present, but 56% of security experts claim their top-level management teams are focusing more on cyber security than they were last year.  

Cyber risk awareness among leadership is also correlated to whether a company has the resources, i.e. headcount and budget, that they need to tackle potential threats. 

According to the data: the organisations where top management are aware of the cyber risks are 67% more likely to have sufficient resources to defend themselves from cyber attacks than in organisations where senior roles are unaware of the threat landscape. Meanwhile, among companies lacking adequate security resources, just 15% of top managers prioritise their security culture.  

According to Psychologist & CEO at SoSafe, Dr Niklas Hellemann, “Management shapes the values of a company, which is why it’s essential for senior leaders to ‘walk the walk’ in cyber risk if they want to nurture strong security cultures... It’s good to see that facing the current cyber threat landscape, the top management awareness is where we need it to be: Cyber security is starting to get a seat at the executive table."

Top managers are becoming more aware of the importance of cyber security and their role model function within organisations. Only with these conditions, employees can succeed at internalising values and secure behaviours around cyber security awareness. 

Despite the need of top management awareness to make cyber security a part of the organisational culture, it’s also necessary from the actual risk perspective: SoSafe’s data reveals that top management is more susceptible to clicking on malicious email links from hackers than their employees are; the average click rate among managers is 60% higher than for other user groups, making them particularly vulnerable to an attacker. 

SoSafe’s data also reveals that senior managers are more likely to report a suspicious email (20%) than employees (8%) are, which again proves that security awareness among top management is rising. 
 
Dr Niklas Hellemann said: “Senior roles are an attractive target for cybercriminals - they have the highest access level and decision-making power, and there’s a strong threat of senior execs being impersonated by hackers with information they’ve provided, for example through CEO fraud or other AI-based attacks. 

“This is why it’s even more vital for those in leadership roles to set an example and be role models for the rest of their team, as well as to protect themselves.” said Hellemann.

You Might Also Read: 

Cyber Security Awareness Training For Management & Employees:

___________________________________________________________________________________________

If you like this website and use the comprehensive 6,500-plus service supplier Directory, you can get unrestricted access, including the exclusive in-depth Directors Report series, by signing up for a Premium Subscription.

  • Individual £5 per month or £50 per year. Sign Up
  • Multi-User, Corporate & Library Accounts Available on Request

Cyber Security Intelligence: Captured Organised & Accessible

 

« Cyber Risk & Ransomware In 2023
Prime Minister Sunak Identifies The Risks & Potential Of AI »

CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Go Cyber

Training that transforms behaviours

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

CYRIN

CYRIN

CYRIN® Cyber Range. Real Tools, Real Attacks, Real Scenarios. See why leading educational institutions and companies in the U.S. have begun to adopt the CYRIN® system.

Cyber Security Supplier Directory

Cyber Security Supplier Directory

Our Supplier Directory lists 6,000+ specialist cyber security service providers in 128 countries worldwide. IS YOUR ORGANISATION LISTED?

ON-DEMAND WEBINAR: What Is A Next-Generation Firewall (and why does it matter)?

ON-DEMAND WEBINAR: What Is A Next-Generation Firewall (and why does it matter)?

Watch this webinar to hear security experts from Amazon Web Services (AWS) and SANS break down the myths and realities of what an NGFW is, how to use one, and what it can do for your security posture.

MIRACL

MIRACL

MIRACL provides the world’s only single step Multi-Factor Authentication (MFA) which can replace passwords on 100% of mobiles, desktops or even Smart TVs.

Practice Labs

Practice Labs

Practice Labs is an IT competency hub, where live-lab environments give access to real equipment for hands-on practice of essential cybersecurity skills.

BruCERT

BruCERT

BruCERT is the referral agency for dealing with computer-related and internet-related security incidents in Brunei Darussalam.

Cyber Threat Intelligence Network (CTIN)

Cyber Threat Intelligence Network (CTIN)

CTIN provides cyber threat intelligence services including training, platform evaluation, ISAC/ISAO systems development and counter botnet operations.

Japan Information Security Audit Association (JASA)

Japan Information Security Audit Association (JASA)

JASA is non-profit association active in developing and managing the quality of Information Security Auditing and Auditors in Japan.

herdProtect

herdProtect

herdProtect is a second line of defense malware scanning platform powered by 68 anti-malware engines in the cloud.

SANS CyberStart

SANS CyberStart

SANS CyberStart is a unique and innovative suite of tools and games designed to introduce children and young adults to the field of cyber security.

Infosec (T) Ltd

Infosec (T) Ltd

Infosec (T) Limited is an independent Tanzania based consultancy specializing in IT governance, information security and IT audit.

PeckShield

PeckShield

PeckShield is a blockchain security company which aims to elevate the security, privacy, and usability of entire blockchain ecosystem by offering top-notch, industry-leading services and products.

CipherBlade

CipherBlade

CipherBlade specializes in blockchain forensics, data science and transaction tracking.

Boeing

Boeing

Boeing is the world's largest aerospace company and leading manufacturer of commercial jetliners, defense, space and security systems.

Fluid Attacks

Fluid Attacks

Fluid Attacks specialize in red team operations as well as technology development that continuously enhance our security testing services.

Anterix

Anterix

Anterix is focused on empowering the modernization of critical infrastructure and enterprise businesses by enabling private broadband connectivity.

evolutionQ

evolutionQ

evolutionQ delivers quantum-risk management strategies and robust cybersecurity tools designed to be safe in an era with quantum computing technologies.

SandboxAQ

SandboxAQ

SandboxAQ is an enterprise SaaS company combining AI + Quantum tech to solve hard problems impacting society.

CERT.JE

CERT.JE

CERT.JE is responsible for promoting and improving the cyber resilience across the critical national infrastructure, business communities and citizens in Jersey.

Abacus Group

Abacus Group

Abacus Group is a global IT services firm for alternative investment firms, providing an enterprise technology platform specifically designed to meet the unique needs of financial services.

Methods

Methods

Methods is the leading digital transformation partner for the UK public sector. We care deeply about making our public services better and have been doing this for over 28 years.