A recent poll conducted by Kaon Security across Australia and New Zealand, in conjunction with the membership of the Chartered Accountants (CAANZ), highlights the need to improve IT security user awareness within the organisations they work for. Over 73% of the 150 poll respondents confirmed they had been the target of a cyber-attack.
The poll posed 4 questions during a recent Webinar – Building a Cyber Defence Plan
- What are your biggest challenges relating to IT Security?
- Have you or your company been under attack?
- What was the attack type?
- What do you see as your next steps?
77% of those responding highlighted user awareness as being the biggest challenge to address whilst encouragingly getting adequate IT security budget approval was an issue for just 8% and a lack of management support for security initiatives came in at under 2%.
Of the 73% that had experienced some form of attack, 58% believed the attack was Phishing based and 19% were targets of a Ransomware attack. 18% could not define the type of attack their organisation had experienced.
“This poll validates what we are currently seeing in the Australian and New Zealand market. Organisations are starting to appreciate the need to introduce, or continue with, an IT security user awareness program” says Mark Micklefield, Consultant at Kaon Security - “Given the respondents in this poll are financially focussed it is good to see they are alert to the common attack types but equally concerning is that 73% of respondents are subject to attacks. The poll results also mirror a similar exercise we conducted with New Zealand organisations in 2016”.
In terms of the next steps responses, 47% stated that starting a security awareness campaign with some form of phishing simulation would be their first priority whilst 30% opted to conduct an audit as their preferred next step.
Kaon Security has assisted several organisations improve the level of awareness around phishing attacks through the programmatic use of a simulator. A simulator has been shown to empower employees to become your last line of defence with industry-proven behavioural conditioning methods to better prepare employees to recognize and resist malicious phishing attempts.
Common simulated attack techniques mimic the actual attacks with attachments, embedded URLs and data entry templates as well as conversational phishing using double barrelled attacks and highly personalised spear phishing. Having completed some simulations to measure your teams ability to spot attacks the next stage would be to run a proactive programme of broad security awareness training using interactive eLearning modules to increase the understanding of cyber risks.
Kaon Security can assist build and manage a tailored security awareness training programme for your organisation.
To book a free consultation with Mark Micklefield to discuss your awareness training requirements contact firstname.lastname@example.org
Back to Newsflash!