Research into Google’s online search habits for cybersecurity training for employees has risen significantly over the past four years, according to the latest analysis by global compliance eLearning provider, DeltaNet International. 

Searches online for ‘cybersecurity training for employees’ have risen 114 percent over the past four years (between years ending Aug 2022 – Aug 2019). 

As a result, organisations are taking a step in the right direction to improve their cybersecurity compliance across their workforce. 

Further data revealed a significant increase for ‘cybersecurity awareness training’ of 66 percent in the same period.  

 

Why is there a spike?

The surge in demand for cybersecurity awareness training comes amid continuous shortages for cybersecurity skills, suggesting employers are looking to their entire workforce to be more cyber aware to reduce the likelihood of cyber-attacks. Research into the UK cybersecurity labour market revealed that half (51%) of all private sector businesses identify a basic technical cyber security skills gap, accounting for around 697,000 businesses. 

According to recent findings by Interisle, phishing attacks have increased by 61 percent in the past year to more than one million attacks. With the rise of phishing attacks, it is no surprise that searches related to ‘phishing awareness training for employees’ have grown 72 percent over the past four years. 

However, it is also interesting that searches around ‘phishing simulation for employees’ surged by 62 percent in the same period. This shows that organisations recognise the importance of educating employees on phishing attacks and testing them to ensure they have understood the training. 

 

What are the consequences of poor cybersecurity?

Worryingly, IBM’s recent cost of a data breach report revealed the global average cost of a data breach increased to USD 4.35 million in 2022, an increase of 2.6 percent from 2021. The cost of non-compliance and falling victim to data breaches is too expensive, especially with the report revealing that human errors were responsible for 21 percent of breaches. 

Also, research from the World Economic Forum revealed that 59 percent of cyber leaders said they would find it challenging to respond to a cybersecurity incident due to the skills shortage within their team. With the cybersecurity skills gap, organisations will remain at risk in protecting their infrastructures.  

 

Jason Stirland, CTO at DeltaNet International, commented:

“While training is certainly not a replacement for skilled cybersecurity professionals, these statistics highlight the need for improving general cybersecurity awareness training among employees. Organisations cannot just rely on cybersecurity professionals to safeguard the businesses’ infrastructure and protect their data. Training employees is a step in the right direction, but the job is nowhere near done. For example, testing employees with phishing simulation messages are integral to the learning process. As a result, IT and HR teams can understand which employees might be a higher risk and therefore require further training and support. 

“Employees across the board, from HR to finance, access critical data, so training everyone in the business on cybersecurity awareness issues, from understanding how to spot phishing attempts to preventing data breaches, is vital. Cybersecurity is not just an issue for the IT and security teams in organisations; it’s an HR issue. Educating employees on cybersecurity awareness training should be refreshed yearly as part of an organisation’s compliance training program and shouldn’t wait until a data breach has occurred.  

 

 

 

 

 

Amelia Brand is the Editor for HRreview, and host of the HR in Review podcast series. With a Master’s degree in Legal and Political Theory, her particular interests within HR include employment law, DE&I, and wellbeing within the workplace. Prior to working with HRreview, Amelia was Sub-Editor of a magazine, and Editor of the Environmental Justice Project at University College London, writing and overseeing articles into UCL’s weekly newsletter. Her previous academic work has focused on philosophy, politics and law, with a special focus on how artificial intelligence will feature in the future.