CISOs cite human error as #1 cybersecurity threat

August 16, 2024
1 min read

TLDR:

  • 74% of CISOs list human error as their top cybersecurity risk
  • Top causes for data loss events were related to employees

According to a report by Proofpoint, 74% of chief information security officers (CISOs) identified human error as their top cybersecurity risk, showing a significant increase from the previous year. The study also highlighted a gap between CISOs and board members in recognizing human error as a risk, emphasizing the importance of educating both leadership and employees. The report identified negligent insider/employee carelessness, malicious insiders, and phishing attacks as key causes of data loss events. To mitigate human cybersecurity risk, organizations are advised to implement AI tools, provide comprehensive employee training, and create a culture of cybersecurity.

Key Elements:

While technology plays a crucial role in cybersecurity, human error is identified as the top risk by CISOs.

Board members are less likely to recognize human error as a risk, highlighting the need for education at all levels of an organization.

The top causes of data loss events in the survey were related to employees, such as negligent insider behavior and phishing attacks.

Organizations can reduce human cybersecurity risk by deploying AI tools, providing ongoing employee training, and creating a cybersecurity culture.

Latest from Blog

EU push for unified incident report rules

TLDR: The Federation of European Risk Management Associations (FERMA) is urging the EU to harmonize cyber incident reporting requirements ahead of new legislation. Upcoming legislation such as the NIS2 Directive, DORA, and