Although the study shows that businesses are gradually shifting from a defensive to an offensive stance in fighting cyber attacks, they’re largely ill-equipped to take on current challenges. A 2015 Spiceworks study showed hat while 80% of companies experienced a cyber attack, only 29% had a cyber expert on staff.
The massive WannaCry ransomware attack, which disrupted computer systems in 150 countries in May, should prompt employers to take preventive cybersecurity action immediately. The campaign was a sharp warning for HR to take the lead in protecting sensitive employee and organizational data from phishing activity and cybersecurity breaches.
Lately, HR departments have been the target of hackers because of the vast amount of personal employee information they maintain. HRIS must be updated and constantly monitored to prevent breaches and HR staff must be made aware of hackers posing as hiring employers.
Employers also should be aware of possible internal breaches. A report by Dtex Systems, a cybersecurity firm, found that 95% of the organizations it polled had employees who tried to bypass security and web restrictions.