Best performers for security culture are the Banking and Financial Services industries and the worst performers were from Education and Construction
Tampa Bay, FL (April 6th, 2021) – KnowBe4, the provider of the world’s largest security awareness training and simulated phishing platform, today announced that its research arm, KnowBe4 Research, has launched the 2021 Security Culture Report. Security culture involves how people think about and approach a more secure environment and this report focuses on those key elements.
The 2021 Security Culture Report more than doubled the sample size from the 2020 report, with more than 320,000 employees in 1,872 organizations around the world. Results from this year’s report revealed a large gap between the best performers and the poor performers when it comes to security culture. The best performers were from Banking and Financial Services industries and the worst performers were from Education and Construction.
Security culture varies across industries. In the industry comparison report, all industries were compared according to their security culture scores and across each of the seven dimensions (Attitudes, Behaviors, Cognition, Communication, Compliance, Norms and Responsibilities) of security culture. This year, a new section was added to the report called A Detailed Analysis of Security Culture, which provides an in-depth view state on specific aspects of security culture. We look at how employees consider their sentiments about having access to security-related information, how they think about passwords and their access to the security team.
“With this annual study, we aim to provide the most comprehensive study of cybersecurity culture-related data,” said Kai Roer, managing director, KnowBe4 Research. “The Security Culture Report takes a unique approach to evaluating security culture using seven different dimensions across a wide variety of industries. Of course, the pandemic has created some shifts in security culture when compared year-over-year. It will be interesting to continue to track how certain vertical industries change over time when it comes to their security culture.”
In a recently published KnowBe4 Research white paper, it was found that organizations with poor security culture have a risk that is 52 times higher for employees sharing credentials.
To download the 2021 Security Culture Report, visit https://www.knowbe4.com/organizational-cyber-security-culture-research-report.
KnowBe4, the provider of the world’s largest security awareness training and simulated phishing platform, is used by more than 37,000 organizations around the globe. Founded by IT and data security specialist Stu Sjouwerman, KnowBe4 helps organizations address the human element of security by raising awareness about ransomware, CEO fraud and other social engineering tactics through a new-school approach to awareness training on security. Kevin Mitnick, an internationally recognized cybersecurity specialist and KnowBe4’s Chief Hacking Officer, helped design the KnowBe4 training based on his well-documented social engineering tactics. Tens of thousands of organizations rely on KnowBe4 to mobilize their end users as the last line of defense.