Employers are being urged to introduce security awareness training as the DCMS report finds many firms aren’t training their staff on cyber security basics.
The Government’s Cyber Security Breaches Survey reported that just 14% of businesses train staff on cyber security and 1 in 5 have tested their staff response to cyber incidents.
The report, conducted by Ipsos Mori on behalf of the Department for Digital, Culture, Media and Sport (DCMS), found the average annual cost for a business being £8,460 for lost data or assets after breaches.
39% of Businesses Suffered Security Breaches in the last 12 months
4 in 10 Small Businesses have experienced Cyber Attacks in the last year
Email and Social Media hacks cost businesses £3.8 Million in the last 12 months
It’s important you keep your business secure by implementing cyber security (and working from home) policies but also through regular security awareness training with your workforce.
The DCMS report found that whilst many firms (47%) allow staff to use personal devices when working from home during the pandemic, just 23% of firms cover home working in a cyber security policy.
With resources stretched after moving businesses online in the last 12 months, just 31% have business continuity plans that mention cyber security and only 15% have completed an audit of their cyber security vulnerabilities.
By signing up for Membership with the Cyber Resilience Centre, you can ensure your business has the most recent cybersecurity policies and procedures in place using our templates. These policies will help you put the right measures in place to ensure your business has clear security strategies and can respond efficiently if an incident occurs.
Whilst basic knowledge of cyber security should be expected from all your employees, it’s important to implement your own cyber security training.
Employers should increase the level of training with specific guidance for your industry. It’s important you’re implementing security training when onboarding new starters and then follow this up throughout your employee’s lifecycle.
The most common breaches or attacks against your employees are through phishing emails, and hackers impersonating your organisation or senior members of staff.
The Cyber Resilience Centre can offer your staff security awareness training to provide simple and effective knowledge so your staff understand their environment and give them the confidence to challenge when something doesn’t look right.
