Comparing End-User Performance Across 12 Categories and 16 Industries
Though our analysis does cover knowledge levels related to email-based phishing, as the name of our report so clearly indicates, it’s critical that organizations acknowledge and evaluate the many other risky end-user behaviors that can negatively impact the security of data, systems, and assets — including employees.
This year’s report includes two new categories: Avoiding Ransomware Attacks (which covers employees’ recognition of what ransomware is and best practices for identifying and avoiding attacks) and Identifying Common Security Issues (which examines users’ high-level understanding of essential cybersecurity best practices). In addition, we again explore end-user understanding of important topics like compliance with data security standards, recognition of phishing tactics, application of data management techniques, and more.
Also new for 2018, we’ve dug deeper into performances by industry, showing how end users in each of 16 industries fared in all 12 categories. We also provide comparisons like those shown in the chart below, which identifies the industries whose end users answered the highest percentage of questions incorrectly about each cybersecurity topic.
Worst Category Performance by Industry
For additional information and analysis, including descriptions of all 12 categories, the best performing industries by category, and industry breakdowns, download your free copy of the Beyond the Phish Report.