Human error is involved in more than 90% of security breaches, according to a thorough 2017 study by IBM and the Ponemon Institute. Most of us invest in a multitude of solutions to protect the perimeter, but don't think much about adding the same protection inside the perimeter. When it comes to high-profile security incidents, human error can cause big trouble. Security at the perimeter combined with a culture of security inside your organization is absolutely key.
Major data breaches cost companies about $4M to remediate. And, each year, a company’s chance of a breach hovers at 30%. If human error isn't top of mind, it should be. At Mimecast, we incorporate today's best thinking about human error into every aspect of our employee security awareness training.
In the context of cybersecurity solutions, human error has three primary components: lack of knowledge, lack of attention, and lack of concern. Individuals can suffer from a combination of these, and each individual is different. To truly move the needle on cybersecurity, you must address all three.
People can't do the right thing if they don't know what it is. People can't avoid the wrong thing if they don't know how it makes them vulnerable. Employee security awareness training must explain what to do, what not to do, and why.
If all employees always attended to security, protecting against cybersecurity threats would be easier. But people are busy with other priorities. Attract their attention, and create an emotional connection that motivates the right action when it matters.
Let's face it: many employees are dismissive of security. They believe security is there to get in their way. See how we help you improve those attitudes, show people what's in it for them and deter insider threats.
Mimecast Awareness Training’s leadership comes from the military, law enforcement and the intelligence community.
The team is led by Michael Madon, Senior Vice President of Training Products. Michael has run cybersecurity in some of the world's highest-risk environments, playing key roles in protecting U.S. military cyber systems in Iraq and mitigating cyber risks at the U.S. Treasury and throughout the financial sector.
As a team, we've learned to see humans as they are, not how we'd like them to be. And here's another thing we've learned: to reduce human error and improve security culture, your employee security awareness training must align with human nature and workplace reality. That's why every component of Mimecast’s Awareness Training platform - from cyber training module content and phishing tests to data collection and analytics—helps you attack all three root causes of human error in security. And that's why it works.
“I've been involved with enterprise security awareness for decades, and have barely found anything as compelling and fun as the content from Mimecast Awareness Training. Their video approach is an amazing way to move culture, and I suspect CISOs will really like their emphasis on risk analytics as well.”
Dr. Edward G. Amoroso, CEO, TAG Cyber LLC, Former SVP and CSO, AT&TSchedule a Demo
Forrester Research has named Mimecast a Strong Performer in The Forrester Wave™: Security Awareness and Training Solutions, Q1 2020, based on our scores in the current offering and strategy categories.