Cyber security preparedness is built on three pillars: people, processes, and technology. While technology is a critical element of an effective cyber security program, alone it is not enough to protect against modern cyber threats; even the best technical security efforts can be undermined by a weak security culture.
It’s not only hackers, corporate spies, or disaffected staff who present a threat to organisations; in most cases, breaches are often unintended consequences to mistakes made by non-malicious, uninformed employees.
The Office of the Australian Information Commissioner (OAIC) publishes quarterly statistical information about notifications received under the Notifiable Data Breaches (NDB) scheme. In both its 1 July — 30 September 2018 and 1 October — 31 December 2018 reports, it listed human error as a major source (37 and 33 percent respectively) of reported breaches. …