Thu Sep 26 13:00:00 UTC 2024: ## Human Risk: The New Frontier in Cybersecurity

**Businesses are facing a rapidly evolving threat landscape, with cybercriminals using increasingly sophisticated techniques to exploit human vulnerabilities.** Despite growing investments in security, companies struggle to prioritize spending effectively. According to Sean Brady, SVP of Product Management at Mimecast, a leading Human Risk Management platform, organizations must recognize the importance of “human risk” in their cybersecurity strategies.

**New threats target user behavior.** Hackers are leveraging advanced technologies like AI to create more convincing phishing attacks, bypassing traditional defenses. They’re even using QR codes to lure users to malicious websites. Recent research by Mimecast found that malicious links are now more common than malicious attachments, demonstrating the need for targeted training and education.

**Human error is a major vulnerability.** While technical security measures are crucial, a staggering 75% of data breaches are attributed to human factors. Identifying “high-risk users” – those who engage in risky behavior more frequently – is essential. These individuals, although a smaller group, account for a disproportionate share of cybersecurity incidents.

**A tailored approach is key.** Companies must understand the unique risk profiles of their employees, considering both their individual behavior and the inherent risks associated with their roles and departments. This information can be used to deliver personalized training and controls, effectively protecting each employee based on their specific threat level.

**Layered defense for a dynamic environment.** A comprehensive human risk management platform should be incorporated into a layered defense approach. This includes:

* **Targeted cyber awareness training:** Providing customized training based on user behavior and role.
* **Threat intelligence:** Understanding the origin of malicious emails to create stronger defenses against targeted attacks.
* **Right-fit cybersecurity technologies:** Utilizing AI-powered tools for detection and prevention, ensuring seamless integration with existing systems.

**Investing in the future.** By addressing human risk factors alongside traditional security measures, businesses can build a robust foundation for future success. Building a layered defense strategy and investing in comprehensive human risk management platforms are crucial steps in safeguarding against the evolving threats of today and tomorrow.

Read More