Senior Managers Need Higher Cyber Security Awareness Than Other Employees

Uploaded on 2023-10-30 in TECHNOLOGY--Resilience, FREE TO VIEW

Cyber security awareness is finally increasing across senior managers, according to data from specialist cyber security training firm, SoSafe. With 50% of companies having been victims of hacking over the last 3 years, cyber risks are more and more present, but 56% of security experts claim their top-level management teams are focusing more on cyber security than they were last year.  

Cyber risk awareness among leadership is also correlated to whether a company has the resources, i.e. headcount and budget, that they need to tackle potential threats. 

According to the data: the organisations where top management are aware of the cyber risks are 67% more likely to have sufficient resources to defend themselves from cyber attacks than in organisations where senior roles are unaware of the threat landscape. Meanwhile, among companies lacking adequate security resources, just 15% of top managers prioritise their security culture.  

According to Psychologist & CEO at SoSafe, Dr Niklas Hellemann, “Management shapes the values of a company, which is why it’s essential for senior leaders to ‘walk the walk’ in cyber risk if they want to nurture strong security cultures... It’s good to see that facing the current cyber threat landscape, the top management awareness is where we need it to be: Cyber security is starting to get a seat at the executive table."

Top managers are becoming more aware of the importance of cyber security and their role model function within organisations. Only with these conditions, employees can succeed at internalising values and secure behaviours around cyber security awareness. 

Despite the need of top management awareness to make cyber security a part of the organisational culture, it’s also necessary from the actual risk perspective: SoSafe’s data reveals that top management is more susceptible to clicking on malicious email links from hackers than their employees are; the average click rate among managers is 60% higher than for other user groups, making them particularly vulnerable to an attacker. 

SoSafe’s data also reveals that senior managers are more likely to report a suspicious email (20%) than employees (8%) are, which again proves that security awareness among top management is rising. 
 
Dr Niklas Hellemann said: “Senior roles are an attractive target for cybercriminals - they have the highest access level and decision-making power, and there’s a strong threat of senior execs being impersonated by hackers with information they’ve provided, for example through CEO fraud or other AI-based attacks. 

“This is why it’s even more vital for those in leadership roles to set an example and be role models for the rest of their team, as well as to protect themselves.” said Hellemann.

You Might Also Read: 

Cyber Security Awareness Training For Management & Employees:

___________________________________________________________________________________________

If you like this website and use the comprehensive 6,500-plus service supplier Directory, you can get unrestricted access, including the exclusive in-depth Directors Report series, by signing up for a Premium Subscription.

  • Individual £5 per month or £50 per year. Sign Up
  • Multi-User, Corporate & Library Accounts Available on Request

Cyber Security Intelligence: Captured Organised & Accessible

 

« Cyber Risk & Ransomware In 2023
Prime Minister Sunak Identifies The Risks & Potential Of AI »

Infosecurity Europe
CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

LockLizard

LockLizard

Locklizard provides PDF DRM software that protects PDF documents from unauthorized access and misuse. Share and sell documents securely - prevent document leakage, sharing and piracy.

NordLayer

NordLayer

NordLayer is an adaptive network access security solution for modern businesses — from the world’s most trusted cybersecurity brand, Nord Security. 

CSI Consulting Services

CSI Consulting Services

Get Advice From The Experts: * Training * Penetration Testing * Data Governance * GDPR Compliance. Connecting you to the best in the business.

ManageEngine

ManageEngine

As the IT management division of Zoho Corporation, ManageEngine prioritizes flexible solutions that work for all businesses, regardless of size or budget.

Jooble

Jooble

Jooble is a job search aggregator operating in 71 countries worldwide. We simplify the job search process by displaying active job ads from major job boards and career sites across the internet.

44CON

44CON

44CON is an Information Security Conference & Training event taking place in London. Designed to provide something for the business and technical Information Security professional.

Synology

Synology

Synology provides high-performance, reliable, and secure Network Attached Storage (NAS) products.

4Stop

4Stop

4Stop is a global KYC, compliance and anti-fraud risk management company.

AFNOR Group

AFNOR Group

AFNOR Group designs and deploys solutions based on voluntary standards around the world and provides services including training, professional and technical information, assessment and certification.

XPO IT Services

XPO IT Services

XPO IT Services are dedicated to providing secure, high quality IT recycling and asset disposal services.

DataDome

DataDome

DataDome offers real-time AI protection against all OWASP automated threats, including credential stuffing, layer 7 DDoS attacks, SQL injection & intensive scraping.

HUB Security

HUB Security

Hub Security provide Ultra Secure, Military Grade HSM (Hardware Security Module) Solutions for Blockchain and Digital Assets.

Sevatec

Sevatec

Sevatec’s Active Cyber Defense (ACD) methodology proactively defends against adversarial kills chain, addressing active and emerging threats while reducing program vulnerabilities and risks.

Truesec

Truesec

TRUESEC has an exceptional mix of IT specialists. We are true experts in cyber security, advanced IT infrastructure and secure development.

BreachQuest

BreachQuest

BreachQuest brings together cybersecurity experts with decades of experience identifying security flaws, penetrating networks, and responding to incidents.

Fortify 24/7

Fortify 24/7

Fortify 24×7 provides a robust portfolio of managed cybersecurity solutions to help you identify and prevent attacks.

Harvey Nash

Harvey Nash

Harvey Nash is a leading global provider of talent and technology solutions.

ClosingLock

ClosingLock

ClosingLock is the leading provider of wire fraud prevention software for the real estate industry.

Logiq Consulting

Logiq Consulting

Logiq Consulting provide a full range of Cyber Security, Information Assurance and System Engineering services.

Worksent Technologies

Worksent Technologies

Worksent is a Trusted white-label offshore support partner for MSPs and MSSPs.

SafeShark

SafeShark

SafeShark are Product Security and Telecommunications Infrastructure (PTSI) Act and Radio Equipment Directive (RED) compliance specialists.