Skip to main content
close search
site logo
Dive Brief

Employers are overlooking employee involvement in creating cyber risk

Published March 1, 2017
By
Valerie Bolden-Barrett Contributor
CC0 Public Domain Free for commercial use No attribution required Pixabay

Dive Brief:

  • Willis Towers Watson, global advisory, broking and solutions company, says businesses should focus more on employees and company culture in managing cyber risk. The company launched a Cyber Risk Culture Survey to determine employees’ involvement in cyber breaches.
  • The survey shows that 90% of cyber risks are caused by human error. The survey also shows that 66% of cyber breaches are caused by employees’ negligence or malicious acts. External threats made up only 18% of cyber breaches and extortion made up 2%.
  • Anthony Dagostino, head of WTW’s global Cyber Risk, warned that a data compromise is more likely when an employee leaves a laptop in a public space than if a malicious criminal hack occurred.

Dive Insight:

Cyber risk, like theft, can be the work of an insider who’s familiar with internal systems — though, more often, such breaches are done accidentally. For that reason, employers must set and enforce cyber security policies, and hire or contract with cyber security experts who can find vulnerable areas in HR management systems and upgrade them.

Since HR keeps much of the data on employees, HR departments are an increasingly popular target for phishing schemes and other cyber attacks. Employers need to not only keep personally identifiable information (PII) such as as health records, payroll information, social security numbers and home addresses in a secure place, but educate those who have access to those documents on the warning signs of phishing or spoofing attacks.

Recommended Reading

Editors' picks

  • An exterior view of a court house.
    Image attribution tooltip
    PierreDesrosiers via Getty Images
    Image attribution tooltip

    3 requests that probably aren’t ADA accommodations

    There are a few workplace modifications that generally are not reasonable, according to Daniel Stern, member of the firm at Dykema.

    By Kate Tornone • Oct. 4, 2024
  • Johnny C. Taylor speaks during a SHRM conference.
    Image attribution tooltip
    Kathryn Moody/HR Dive
    Image attribution tooltip

    Top HR conferences for 2025

    Major issues on the agenda include artificial intelligence in the workplace, skills-based hiring, the ever-evolving employment law landscape and more.

    By HR Dive staff • Oct. 1, 2024

Company Announcements

View all | Post a press release
CuraLinc Healthcare Announces Strategic Acquisition of Marquee Health
From CuraLinc Healthcare
October 29, 2024
LearnLux Financial Wellbeing Named Top 25 Work Tech Vendor
From LearnLux
November 07, 2024
CuraLinc Healthcare Expands Partner Network Announcing Strategic Oshi Health Partnership
From CuraLinc Healthcare
November 05, 2024
Improvizations Signs Letter of Intent to Acquire The FASE Group
From Improvizations, LLC
November 12, 2024
Editors' picks
  • An exterior view of a court house.
    Image attribution tooltip
    PierreDesrosiers via Getty Images
    Image attribution tooltip

    3 requests that probably aren’t ADA accommodations

    There are a few workplace modifications that generally are not reasonable, according to Daniel Stern, member of the firm at Dykema.

    By Kate Tornone • Oct. 4, 2024
  • Johnny C. Taylor speaks during a SHRM conference.
    Image attribution tooltip
    Kathryn Moody/HR Dive
    Image attribution tooltip

    Top HR conferences for 2025

    Major issues on the agenda include artificial intelligence in the workplace, skills-based hiring, the ever-evolving employment law landscape and more.

    By HR Dive staff • Oct. 1, 2024
Latest in HR Management
image/svg+xml
Industry Dive is an Informa business
© 2024 Industry Dive. All rights reserved. | View our other publications | Privacy policy | Terms of use | Take down policy.
Cookie Preferences / Do Not Sell