Why Observe Cyber Security Awareness Month?
Cyber Security Awareness Month is a great way to highlight the importance of security awareness at your organization and the role of end users in maintaining strong security postures — and that opportunity shouldn’t be wasted. As our 2017 Beyond the Phish™ Report revealed, it’s a mistake to assume that end users’ knowledge levels will remain consistent without reinforcement. Awareness develops over time, and initiatives like Cyber Security Awareness Month give users opportunities to develop and practice their skills.
Now endorsed internationally by organizations such as the European Union Agency for Network and Information Security (ENISA), the initiative started in 2004 as a collaboration between the U.S. Department of Homeland Security (DHS) and its public and private partners. One of the themes promoted by the DHS this year is Cybersecurity in the Workplace is Everyone’s Business; their documentation notes, “Creating a culture of cybersecurity is critical for all organizations — large and small businesses, academic institutions, non-profits, and government agencies — and must be a shared responsibility among all employees. ENISA also highlights the importance of cybersecurity in the workplace this month, aiming to raise awareness about threats such as phishing, malware, and ransomware.