Net Sec Company Releases Annual Threat Survey
With Human Error as Leading Threat, Need to “Idiot-Proof” Systems Key to Shoring up Defenses
Software company, Nuix, has released its annual survey of corporate information security practitioners with the results striking a similar refrain. Nearly all the respondants agree that human error remains the greatest threat to cyber security. Moreover, they are expressing an increased willingness to take action against careless employees.
The survey titled, Defending Data: Turning Cybersecurity Inside Out with Corporate Leadership Perspectives on Reshaping Our Information Protection Practices, found that among respondents:
- 71% reported having an insider threat program or policy
- Despite 93% being able to identify their critical value data, only 69% said they knew what people did with the critical value data after it was accessed
- 93% claimed human behavior was the biggest threat to their organizations’ security, up from 88% in 2014
Based on its findings, the company predicts organizations without an insider threat program or policy in place may be legally forced to implement one. “If you have not made insider threat protection a priority, the court will force you to do so,” said Keith Lowry, Nuix’s Senior Vice President of Business Threat Intelligence and Analysis in a company media release.
He says victims of data breaches are frequently trying to prove negligence to meet an acceptable standard of care on the part of a data custodian. “The Federal Trade Commission also has the authority to enforce cybersecurity regulations, which further complicates the environment,” he said.
To counter this growing threat, respondents to the survey indicate organizations will begin penalizing employees who misinterpret security policies and procedures. Nonetheless, fear of punishment may still not be enough. "Where this breaks down is that a large proportion of people, even after they've had security awareness training, will still put their organizations at risk by opening malicious attachments and visiting suspect websites," Jim Kent, global head of security and intelligence at Nuix, said in a report by Virginia Business. "While the policies and training are crucial, we need to get better at 'idiot-proofing' our technology so that even if people do the wrong thing, the malware doesn't run or doesn't achieve its goals."
Ultimately, the threat to information security is a persistent dilemma and skilled network security professionals remain in high demand. According to the U.S. Bureau of Labor Statistics, employment of information security analysts is projected to grow 18 percent from 2014 to 2024, much faster than the average for all occupations.
If you’re considering a career in Cyber and Network Security, you will likely need to earn a degree, but it may not take as long as you think. Through ECPI University’s year-round, accelerated program, you can earn a Bachelor’s degree in Cyber and Network Security in just 2.5 years or an Associate’s in Network Security in as little as 1.5 years.
Through our hands-on program, you can experience your education through real-life simulations that can teach you how to keep hackers at bay and networks secure. Specifically, you can learn how to:
- Evaluate problems and monitor networks
- Maintain network hardware and software
- Plan, coordinate, and implement network security measures
- Install security software
- Monitor networks for security breaches
Are you ready to earn your Bachelors of Science in Computer and Information Science with a concentration in Cyber and Network Security? Consider ECPI University for the educational background you'll need to start working in this field. Classes are available at several locations including Virginia, North Carolina, and South Carolina. You can also learn online. For more information and to answer any questions you may have, contact a helpful admissions advisor today.
It could be the Best Decision You Ever Make!
DISCLAIMER – ECPI University makes no claim, warranty, or guarantee as to actual employability or earning potential to current, past or future students or graduates of any educational program we offer. The ECPI University website is published for informational purposes only. Every effort is made to ensure the accuracy of information contained on the ECPI.edu domain; however, no warranty of accuracy is made. No contractual rights, either expressed or implied, are created by its content.
Gainful Employment Information – Cyber and Network Security - Bachelor’s
For more information about ECPI University or any of our programs click here: http://www.ecpi.edu/ or http://ow.ly/Ca1ya.