CLTRe Research Publications
Download our reports, whitepaper and research into security culture, its influences and its impact
Security Culture Report 2021
The 2021 Security Culture Report is the largest study of its kind, measuring organizations’ security cultures and surveying more than 320,000 employees across 1,872 organizations worldwide.
This report provides an objective and scientific method for assessing, reporting, and comparing the relative cybersecurity culture-related strengths and weaknesses of individuals, organizations, industry sectors, and regions across the 7 dimensions mentioned above.
Security Culture and Credential Sharing
Security Culture and Credential Sharing – Improved Security Culture Reduces Credential Sharing in Cybersecurity investigates the impact of security culture on reducing risky security behaviors such as opening phishing emails, clicking on suspicious links, and giving away credentials.
97,661 employees in 1,115 organizations worldwide were analyzed in total. The global study finds empirical evidence that security culture and security behaviors are closely linked, and improving security culture can reduce these risks 52-fold!
The 2020 Security Culture Report
The 2020 Security Culture Report provides a deep dive into how security culture varies across industries, countries and regions. This year’s global report by CLTRe compiles data from over 120,000 employees in 24 countries and across 1107 organizations in 17 industries. The results reveal a large gap between the best performers and the poor performers around the globe.
Each chapter focuses on a specific industry, sharing a statistical analysis of the latest security culture benchmark figures and providing a critical review of the security culture strengths and weaknesses of each sector.
The 7 Dimensions of Security Culture
This paper provides a comprehensive resource for practitioners seeking a deeper understanding of the dimensions that comprise security culture. Knowledge of what these dimensions are, how they relate to security, and how they can be positively influenced, will provide practitioners with the tools and practical advice needed to start building and improving security culture in organizations.
The Security Culture Report 2018
‘The Security Culture Report 2018 – Measure to Improve’ is the result of data collected from more than 20,000 employees, from across Europe and the USA over the course of two years. This is the first time a comparison of how security culture evolves over time has been published. The report focuses on three main areas: industry benchmarking, language comparison, and year on year change in security culture.
To measure security culture - a scientific approach
This whitepaper from CLTRe explains how to measure security culture in a scientifically valid and reliable way. The whitepaper explores the need for measuring culture, how it is being done today and explains how the CLTRe Toolkit scientific method is different.
The Security Culture Report 2017
‘The Security Culture Report 2017 – Indepth insights into the human factor’investigates the human factors influencing security culture. This report is a deep dive into the security cultures of more than 10 000 employees across 5 industry sectors, 38 companies and two countries. (Full version, 200+ pages)
Gender, Risk and Security
The Security Culture Report 2017 on ‘Gender, Risk and Security’ highlights the importance of gender balance in risk-management strategy. Organisations, departments or teams with a limited balance of genders are more likely to display biased security and risk behaviours. (Excerpt of full report, 20 pages)
Age, Experience, Risk and Security
The Security Culture Report 2017 on ‘Age, Experience, Risk and Security’ shares some fascinating findings on how age and experience correlates with security observations and behaviours of the workforce. (Excerpt of full report, 20 pages)