Cybersecurity awareness programmes are one of the efforts taken by cyber security professionals to let the users know the cyber threats out there and how to prevent being a victim at the hands of bad actors.
Chirag Joshi, Cyber Security & Technology Leader, ISACA SYDNEY CHAPTER, states that maybe the method of communication to the users’ needs to improve.
“There are several programmes that has been created and the two noticeable issues that shows the message of the programme not getting through to users is what and how we are communicating is not right,” he said.
He further added that maybe communicating to the users in the basic level of maturity is why the users are not interested in listening.
The basic communication about cybersecurity might not be interesting to the everyday users so professionals must find a creative way to present to them.
Making the issue personal for the users might grab their attention, for example, telling them how a cyber attack could affect their loved ones at home, this could help encourage users to be more aware of what they do online.
He further added that maybe a demonstration of an attack could get the users to understand better the nature of cyber threats.
Awareness is key in cybersecurity to reduce cyber risks. It is believed that 99% of cyber attacks are exploited through the elements of human error.
“Cybersecurity is fundamentally a risk management exercise and in order to reduce the risk, awareness is the key control for it,” Chirag said.