It has always been suspected that security culture and secure behaviour were closely linked, although proof was hard to produce. Today, KnowBe4 released research that shows not only have researchers been able to validate that link, but they also give data that provides conclusive evidence related to the importance of focusing on the human side of security. By examining the behaviour and security culture of 97,661 employees across 1,115 organisations, KnowBe4 has observed that the link exists between the level of security culture in an organisation and the measure of secure behaviour of its employees.
The findings of this white paper, titled “How Security Culture Invokes Secure Behaviour”, are based on research data from the Security Culture and Credential Sharing survey and show that improving one’s security culture directly translates into more secure employee behaviours such as a reduction in credential staffing risks and to the overall reduction of organisational risk. In fact, it shows there is a 52 times difference between the behaviours of credential sharing in the worst class (Poor) and the best class (Good). This means the more focus given to security culture, the greater the likelihood that employees will follow secure practices and adopt more secure behaviours.
“Through this ground-breaking research, we have been able to validate the link between security culture and secure behaviour,” said Joanna Huisman, SVP strategic insights and research, KnowBe4. “In this paper, we have outlined actionable steps that organisations can take to help build upon and improve their security culture. These steps outline concrete ways to help build a solid security culture for organisations aiming to be more secure overall.”
To download “How Security Culture Invokes Secure Behavior,” visit https://info.knowbe4.com/wp-how-security-culture-invokes-secure-behavior.
