Only six percent believe cybersecurity is the collective responsibility of the organisation.
More than three-quarters of employees of professional services businesses say they have seen a colleague breach cybersecurity best practice, with 88 percent saying they’ve personally been a victim of a cyber-attack at work.
According to research by e2e-assure, only nine percent of employees are reporting colleagues to IT when they do witness them breaching cybersecurity protocol. Also, only six percent believe cybersecurity is the collective responsibility of the organisation, and 11 percent of employees say they are ‘very engaged’ in cybersecurity training. This contrasts with 85 percent of cyber risk owners in Professional Services, who say that their workers are engaged in cybersecurity training.
Rob Demain, founder and CEO at e2e-assure, said: “Professional Services organisations are particularly at risk as they are often the gatekeepers to larger organisations – meaning supply chain attacks in this sector are rife.
“With so many employees disengaged in cybersecurity due to a focus on client delivery and efficiency, it’s imperative that cyber risk owners pay attention to building holistic resilience from the ground up through proper training.“
Written by
Dan Raywood is a B2B journalist with 25 years of experience, including covering cybersecurity for the past 17 years. He has extensively covered topics from Advanced Persistent Threats and nation-state hackers to major data breaches and regulatory changes.
He has spoken at events including 44CON, Infosecurity Europe, RANT Forum, BSides Scotland, Steelcon and the National Cyber Security Show, and served as editor of SC Media UK, Infosecurity Magazine and IT Security Guru. He was also an analyst with 451 Research and a product marketing lead at Tenable.
