“Cybersecurity is not the sole responsibility of IT. Companies must educate everyone to be more self-aware to empower them to play an active role in their cybersecurity.”
– Glenn Baruck, Chicago Voice & Data
Traditional thinking (outdated?) is that cybersecurity is a job for the IT experts and that the rest of the organization should go about their daily business. This rational leaves already vulnerable companies even more exposed as recent statistics point to a large number of breaches being attributable to human error. Current thinking is that self-awareness is now a vital component of cybersecurity strategy and that organizations who pursue a better understanding of how different individuals may be vulnerable to cybercrimes will be better protected.
This recent article by John Hackston for Security Infowatch touches on the current nature of cybercrime and sheds some new light on a more effective, holistic cybersecurity approach.