It can vary widely between individuals and teams within an organization.
How to measure the human behavior in cybersecurity and how to differentiate it from knowledge about cyber-risky situations?
About the author: Dr. Maria Bada is a lecturer in Cyberpsychology at Queen Mary university in London and a RISCS Fellow in cybercrime. Her focus is the human aspect of cybercrime and cybersecurity.
It can vary widely between individuals and teams within an organization.
Employees’ vulnerability to being targeted is not necessarily dependent on their position or level of access to company systems.
How to identify behaviors and employees in need of training?
Identify those who need more training or specific training by collecting insights about employee behavior. The Human Risk Assessment considers the risk perception of employees and offers valuable information regarding employees’ perceptions of how their behaviors can impact their organization’s assets.
Make informed decisions about internal policies, procedures and training
This data-driven, interactive, and easy-to-administer solution allows businesses to assess their current state of human cyber-resilience, identify the specific vulnerabilities in their employees’ security knowledge and behavior, and implement a more focused and engaging approach to training.
Also in this series Stakeholder Analysis: Motives, Needs and Drivers for Security Awareness Training
The 2nd whitepaper presents the findings of a stakeholder analysis with over 160 participants presenting their opinions and experience on the status of cybersecurity training in modern work environments Learn more
Free whitepaper The need for human-centered security awareness training
The human factor in cybersecurity has become the primary way for hackers to establish a foothold within critical infrastructure. The broad impact of these attacks is not only financial and reputational, but also social, and psychological. Learn more
Protect your company against cyber attacks preying on your employees
Try AwareGO, the only complete solution for cybersecurity awareness, from assessment to training — it’s simple, efficient and employees love it
The 2024 Verizon Data Breach Investigations Report reveals that 68% of security incidents still involve a non-malicious human element. You've likely.....
You're walking into your office with a hot coffee in each hand when a friendly stranger catches the door for you. You smile, nod, and walk right in......
On a Tuesday morning in October 2025, a senior accountant at a mid-sized firm received an email from their CEO. It wasn't a generic blast. The...
What if the most effective way to secure your organization isn't a million-dollar firewall, but a simple string of characters? You likely feel the...
At 9:42 AM on a Tuesday, your head of finance receives an email that appears to come from your CEO. It references a specific confidential contract...
What if your 98% completion rate is actually your biggest security vulnerability? It's a frustrating reality for many IT leaders who see perfect...
What if the data your C-suite actually wants isn't found in your firewall logs, but in your breakroom? You've likely felt the frustration of...
What if the metric that matters most isn't how many people click, but how many people actually report the threat? By 2026, AI-driven social...
Did you know that the average annual cost of internal security incidents jumped to $15.4 million in 2022? According to the Ponemon Institute, that is....
Your employees aren't your biggest vulnerability; they're your most underutilized security asset. You've likely felt the frustration of watching 24%.....