Senior Managers Need Higher Cyber Security Awareness Than Other Employees

Uploaded on 2023-10-30 in TECHNOLOGY--Resilience, FREE TO VIEW

Cyber security awareness is finally increasing across senior managers, according to data from specialist cyber security training firm, SoSafe. With 50% of companies having been victims of hacking over the last 3 years, cyber risks are more and more present, but 56% of security experts claim their top-level management teams are focusing more on cyber security than they were last year.  

Cyber risk awareness among leadership is also correlated to whether a company has the resources, i.e. headcount and budget, that they need to tackle potential threats. 

According to the data: the organisations where top management are aware of the cyber risks are 67% more likely to have sufficient resources to defend themselves from cyber attacks than in organisations where senior roles are unaware of the threat landscape. Meanwhile, among companies lacking adequate security resources, just 15% of top managers prioritise their security culture.  

According to Psychologist & CEO at SoSafe, Dr Niklas Hellemann, “Management shapes the values of a company, which is why it’s essential for senior leaders to ‘walk the walk’ in cyber risk if they want to nurture strong security cultures... It’s good to see that facing the current cyber threat landscape, the top management awareness is where we need it to be: Cyber security is starting to get a seat at the executive table."

Top managers are becoming more aware of the importance of cyber security and their role model function within organisations. Only with these conditions, employees can succeed at internalising values and secure behaviours around cyber security awareness. 

Despite the need of top management awareness to make cyber security a part of the organisational culture, it’s also necessary from the actual risk perspective: SoSafe’s data reveals that top management is more susceptible to clicking on malicious email links from hackers than their employees are; the average click rate among managers is 60% higher than for other user groups, making them particularly vulnerable to an attacker. 

SoSafe’s data also reveals that senior managers are more likely to report a suspicious email (20%) than employees (8%) are, which again proves that security awareness among top management is rising. 
 
Dr Niklas Hellemann said: “Senior roles are an attractive target for cybercriminals - they have the highest access level and decision-making power, and there’s a strong threat of senior execs being impersonated by hackers with information they’ve provided, for example through CEO fraud or other AI-based attacks. 

“This is why it’s even more vital for those in leadership roles to set an example and be role models for the rest of their team, as well as to protect themselves.” said Hellemann.

You Might Also Read: 

Cyber Security Awareness Training For Management & Employees:

___________________________________________________________________________________________

If you like this website and use the comprehensive 6,500-plus service supplier Directory, you can get unrestricted access, including the exclusive in-depth Directors Report series, by signing up for a Premium Subscription.

  • Individual £5 per month or £50 per year. Sign Up
  • Multi-User, Corporate & Library Accounts Available on Request

Cyber Security Intelligence: Captured Organised & Accessible

 

« Cyber Risk & Ransomware In 2023
Prime Minister Sunak Identifies The Risks & Potential Of AI »

CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Go Cyber

Training that transforms behaviours

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

IT Governance

IT Governance

IT Governance is a leading global provider of information security solutions. Download our free guide and find out how ISO 27001 can help protect your organisation's information.

NordLayer

NordLayer

NordLayer is an adaptive network access security solution for modern businesses — from the world’s most trusted cybersecurity brand, Nord Security. 

Authentic8

Authentic8

Authentic8 transforms how organizations secure and control the use of the web with Silo, its patented cloud browser.

CSI Consulting Services

CSI Consulting Services

Get Advice From The Experts: * Training * Penetration Testing * Data Governance * GDPR Compliance. Connecting you to the best in the business.

XYPRO Technology

XYPRO Technology

XYPRO is the market leader in HPE Non-Stop Security, Risk Management and Compliance.

Cofense

Cofense

Cofense (formerly PhishMe) is a leading provider of human-driven phishing defense solutions.

CONCERT

CONCERT

CONCERT is a Computer Emergency Response Team and cyber security information sharing network for companies, institutes and government in Korea.

Korea Internet & Security Agency (KISA)

Korea Internet & Security Agency (KISA)

KISA is committed to improving the competitiveness, reliability and security of Internet information and knowledge in Korea.

National Cyber League (NCL)

National Cyber League (NCL)

The NCL provides a virtual training ground for participants to develop, practice, and validate their cybersecurity knowledge and skills.

Cyber Security Capital (CS^)

Cyber Security Capital (CS^)

Cyber Security Capital is a consultancy helping to mobilise and empower individuals, corporate leaders and entrepreneurs in cyber security.

Fluency Security

Fluency Security

Fluency is the only Security Analytics & Orchestration (SAO) solution that automates correlation, detection, validation and ongoing tracking.

Mantix4

Mantix4

Mantix4’s M4 Cyber Threat Hunting Platform actively defends against cyber threats.

Evidence Talks Ltd

Evidence Talks Ltd

A leading forensic computing authority developing unique digital forensic technologies. Tools that detect potential terrorists & criminals & used by the military, enforcement & intelligence commmunity

Spin Technology

Spin Technology

SpinOne is a SaaS data protection platform designed to monitor, secure, and back up your G Suite and O365 data, improve compliance, and reduce IT costs.

Inetum

Inetum

Inetum (formerly Gfi Informatique) is an agile IT services providing digital services and solutions, and a global group that helps companies and institutions to get the most out of digital flow.

Asimily

Asimily

Asimily’s IoMT risk remediation platform holistically secures the mission-critical healthcare devices that deliver safe and reliable care.

SMARTEST

SMARTEST

SMARTEST is a world-class IT solutions provider active in the most challenging and demanding industries such as the oil and gas industries.

Imprivata

Imprivata

Imprivata is the digital identity company for life- and mission-critical industries, redefining how organizations solve complex workflow, security, and compliance challenges.

SecureTeam

SecureTeam

SecureTeam are a UK-based information security practice, specialising in all areas of cybersecurity.

HaystackID

HaystackID

HaystackID provides industry-leading computer forensics, eDiscovery, and attorney document review experts to help with complex, data-intensive investigations and litigation.

Aliro Security

Aliro Security

AliroNet is the world’s first entanglement Advanced Secure Network solution.