More than half of UK office workers say employers give no security training

Published: Wednesday, 08 June 2016 09:42

More than half of UK office workers say their employers have provided no cyber security awareness training, according to ISACA’s 2016 Cyber Security Perceptions study of more than 2,000 UK consumers online.

More than one in three respondents (36 percent) say they could not confidently define a phishing attack and one in five (19 percent) have fallen prey to phishing emails. Additionally, when asked to prioritise between a fast Internet connection and a secure one, 1 in 3 chose speed.

“It is critically important that we create awareness in cybersecurity and in multiple roles within an organization,” said Christos Dimitriadis, Ph.D., CISA, CISM, CRISC, chair of ISACA’s board of directors. “The human factor is critical when creating cybersecurity capability, and education based on practical guidance is key to reducing the related business risks.”

Additionally, more than three-quarters of respondents (76 percent) don’t know what ransomware is and nearly two-thirds (62 percent) could not define a breach, despite high-profile incidents regularly featuring in mainstream UK media.

Survey methodology

The UK Cybersecurity Perceptions Study was an online survey of 2,011 adults. Fieldwork was undertaken between 1st-2nd June 2016. The figures have been weighted and are representative of all UK adults (age 18+).

www.isaca.org