top of page
Donald E. Hester

Does Security Awareness Work?

According to the Verizon 2018 Data Breach Report, 93% of data breaches are linked to phishing or social engineering. With stats like that, you would think cybersecurity awareness would be a top priority for organizations. However, there have been some cybersecurity professionals who claim that awareness is not effective and won’t change individual behavior. I disagree with their pessimism, human behavior can be changed. In fact, advertisers pay millions of dollars for a super bowl ad just to get people to change their behavior.

Typically, negative opinions come from the experience of ineffective cybersecurity awareness programs. Yet, we need to realize that not all programs are the same and t