Most SMEs Do Not Provide Cyber Security Training

Uploaded on 2022-02-14 in JOBS-Training, FREE TO VIEW

Small and Medium Enterprises (SME)s face a growing range of cyber security threats and the latest Report by Software Advice highlights the fact that 62% of SME leaders in Briatain have observed a significant increase in cyber threats in the last 2 years.  

Despite the proliferation of cyber attacks, 48% of managers surveyed admitted that their employees have not received any cyber security training in the last 2 years. The evidence strongly suggests that SMEs are not doing enough to protect themselves. 

The study reveals that 22% of SMEs have fallen victim to 1 or more cyber attacks between 2020-2021. Of this increase in attacks, the most common came in the form of phishing (at 57%), followed by malware (54%). Furthemore: 

  • 32% of managers claimed to not have a cyber security program within their company.
  • 50% of SMEs do not have a formal cyber security incident response plan in place.
  •  60% do not have any employee cyber security training. 
  • 24%admitted to never having conducted a security audit.
  • 35% of managers stated that, in case of an attack, they wouldn’t know what to do or how to report it. 

The majority of business leaders think that their employees have too much access to company data and that their biggest concern is about protecting customer data, particularly names, contact information and credit card details. 

  • 25% of respondents stated that their employees don’t have access to all data, but to more data than is strictly necessary to perform their job.
  • 23% admitted that employees have access to all company data. 

Considering that over 60% of SMEs have experienced an increase in cyber threats in the last 2 years, it becomes clear that inadequate cyber security measures are a major risk for many SMEs.

  • 48% of respondents have not received any recent cyber security training.
  • 38% of respondents stated that a lack of budget was the main barrier preventing companies from being able to protect themselves against cyber attacks. 
  • 33% referred to a lack of skilled IT personnel.
  • 27% blames low-security awareness among employees.

As cyber attacks are becoming more common as companies and their customers share more data online and  remote working compromises company security systems, the lack of adequate cyber security training for employees more should be a much more urgent priority for SMEs. 

FCC.Gov:         Gov.UK:        Software Advice:      FE News:        FSB Skills Hub:      

You Might Also Read: 

Is Cyber Training Fit For Purpose?:

 

« Online Fraud Is A British Security Nightmare
An Invasion Of Ukraine Might Coincide With Cyber Attacks On Western Banks »

Infosecurity Europe
CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

Alvacomm

Alvacomm

Alvacomm offers holistic VIP cybersecurity services, providing comprehensive protection against cyber threats. Our solutions include risk assessment, threat detection, incident response.

Directory of Cyber Security Suppliers

Directory of Cyber Security Suppliers

Our Supplier Directory lists 8,000+ specialist cyber security service providers in 128 countries worldwide. IS YOUR ORGANISATION LISTED?

ManageEngine

ManageEngine

As the IT management division of Zoho Corporation, ManageEngine prioritizes flexible solutions that work for all businesses, regardless of size or budget.

Jooble

Jooble

Jooble is a job search aggregator operating in 71 countries worldwide. We simplify the job search process by displaying active job ads from major job boards and career sites across the internet.

DigitalStakeout

DigitalStakeout

DigitalStakeout enables cyber security professionals to reduce cyber risk to their organization with proactive security solutions, providing immediate improvement in security posture and ROI.

RiskLens

RiskLens

RiskLens is a software company that specializes in the quantification of cybersecurity risk.

OcuCloud

OcuCloud

OcuCloud protects businesses' valuable information in the cloud, preventing security breaches caused by employees and remote vendors.

DAkkS

DAkkS

DAkkS is the national accreditation body for Germany. The directory of members provides details of organisations offering certification services for ISO 27001.

Cloud Managed Networks

Cloud Managed Networks

Cloud Managed Networks provides enterprise grade IT network solutions for cloud-based and on premise network security, Wi-Fi, data switching, collaboration, device management and more.

Cyber Threat Alliance

Cyber Threat Alliance

CTA is working to improve cybersecurity of our digital ecosystem by enabling near real-time cyber threat information sharing among companies and organizations in the cybersecurity field.

Naoris Protocol

Naoris Protocol

Naoris is the world’s first holistic blockchain-based cybersecurity ecosystem, bringing a game-changing solution to address 35 years of industry similar practice.

Healthcare Fraud Shield (HCFS)

Healthcare Fraud Shield (HCFS)

The focus of Healthcare Fraud Shield is solely on healthcare fraud prevention and payment integrity with a successful approach based on many unique advantages we deliver to our clients.

Ampliphae

Ampliphae

Ampliphae gives you an easy-to-deploy, sophisticated and affordable cloud-discovery, security and compliance platform.

Packetlabs

Packetlabs

Packetlabs specializes in penetration testing services and application security.

Horizon3.ai

Horizon3.ai

Horizon3.ai is a leader in security assessment and validation enabling continuous security overwatch from an attacker’s perspective through our NodeZero SaaS solution.

SEIRIM

SEIRIM

SEIRIM delivers cybersecurity solutions in Shanghai China specializing in Web Application Security, Network Security for SME's, Vulnerability Management, and serving as Managed Security as a Service.

InfoSec4TC

InfoSec4TC

InfoSec4tc is an online Information Security Courses, Training, and Consultancy provider.

Readynez

Readynez

Readynez is the digital skills concierge service that helps you ensure your workforce has the tech skills and resources needed to stay ahead of the digital curve.

DerSecur

DerSecur

DerSecur has been engaged in advanced technology activities in the field of Application Security since 2011. We offer R&D technology solutions in the field of SAST, DAST and SCA analysis.

Paramount Defenses

Paramount Defenses

Paramount Defenses have unrivaled capability in two of the most critical areas in cyber security today – Active Directory Security and Privileged Access.

TeKnowledge

TeKnowledge

TeKnowledge enables governments and enterprises around the world to navigate the challenges with digital transformation today and tomorrow with elite cybersecurity protection and managed services.