Cyber breaches knows no boundaries and doesn’t discriminate based on business size. For example, a study by the National Cyber Security Alliance shows that even though 66 percent of the small businesses surveyed relied on the Internet on a daily basis and 69 percent handled sensitive data, only 23 percent had a written policy and procedure Internet security guide for their employees. Only 37 percent provided Internet safety training to their employees, and only 50 percent had a cybersecurity plan to keep their business secure.
“We have to come from an understanding that humans are traditionally very bad at estimating risks when the risks are small. These events that seem to be one in 10,000, what does that mean? It’s hard for people to assess how big the risk is,” says Dr. Vincent Berk, CEO of FlowTraq. Albert Lewis, a cybersecurity expert and Executive Board Member of Federal Information Systems Security Educators’ Association agrees. “It’s important for us to recognize that most employees don’t care about the attacks, they just want to get their work done,” he says. Thankfully, you don’t have to be a cybersecurity expert to implement good practices and policies in your business and help your employees learn to be more cyber aware.