Search
00
GBAF Logo
trophy
Top StoriesInterviewsBusinessFinanceBankingTechnologyInvestingTradingVideosAwardsMagazinesHeadlinesTrends

Subscribe to our newsletter

Get the latest news and updates from our team.

Global Banking and Finance Review

Global Banking and Finance Review - Subscribe to our newsletter

Company

    GBAF Logo
    • About Us
    • Profile
    • Privacy & Cookie Policy
    • Terms of Use
    • Contact Us
    • Advertising
    • Submit Post
    • Latest News
    • Research Reports
    • Press Release
    • Awards▾
      • About the Awards
      • Awards TimeTable
      • Submit Nominations
      • Testimonials
      • Media Room
      • Award Winners
      • FAQ
    • Magazines▾
      • Global Banking & Finance Review Magazine Issue 79
      • Global Banking & Finance Review Magazine Issue 78
      • Global Banking & Finance Review Magazine Issue 77
      • Global Banking & Finance Review Magazine Issue 76
      • Global Banking & Finance Review Magazine Issue 75
      • Global Banking & Finance Review Magazine Issue 73
      • Global Banking & Finance Review Magazine Issue 71
      • Global Banking & Finance Review Magazine Issue 70
      • Global Banking & Finance Review Magazine Issue 69
      • Global Banking & Finance Review Magazine Issue 66
    Top StoriesInterviewsBusinessFinanceBankingTechnologyInvestingTradingVideosAwardsMagazinesHeadlinesTrends

    Global Banking & Finance Review® is a leading financial portal and online magazine offering News, Analysis, Opinion, Reviews, Interviews & Videos from the world of Banking, Finance, Business, Trading, Technology, Investing, Brokerage, Foreign Exchange, Tax & Legal, Islamic Finance, Asset & Wealth Management.
    Copyright © 2010-2026 GBAF Publications Ltd - All Rights Reserved. | Sitemap | Tags | Developed By eCorpIT

    Editorial & Advertiser disclosure

    Global Banking and Finance Review is an online platform offering news, analysis, and opinion on the latest trends, developments, and innovations in the banking and finance industry worldwide. The platform covers a diverse range of topics, including banking, insurance, investment, wealth management, fintech, and regulatory issues. The website publishes news, press releases, opinion and advertorials on various financial organizations, products and services which are commissioned from various Companies, Organizations, PR agencies, Bloggers etc. These commissioned articles are commercial in nature. This is not to be considered as financial advice and should be considered only for information purposes. It does not reflect the views or opinion of our website and is not to be considered an endorsement or a recommendation. We cannot guarantee the accuracy or applicability of any information provided with respect to your individual or personal circumstances. Please seek Professional advice from a qualified professional before making any financial decisions. We link to various third-party websites, affiliate sales networks, and to our advertising partners websites. When you view or click on certain links available on our articles, our partners may compensate us for displaying the content to you or make a purchase or fill a form. This will not incur any additional charges to you. To make things simpler for you to identity or distinguish advertised or sponsored articles or links, you may consider all articles or links hosted on our site as a commercial article placement. We will not be responsible for any loss you may suffer as a result of any omission or inaccuracy on the website.

    Home > Business > Security awareness training: Where it’s going wrong, and how to improve it
    Business

    Security awareness training: Where it’s going wrong, and how to improve it

    Published by maria gbaf

    Posted on December 28, 2021

    5 min read

    Last updated: January 28, 2026

    An informative graphic illustrating the link between Novo Nordisk's Ozempic and the increased risk of NAION, a rare eye disease. This image supports the article discussing recent studies and regulatory scrutiny.
    Graphic depicting Novo Nordisk's Ozempic diabetes drug and NAION eye disease risk - Global Banking & Finance Review
    Why waste money on news and opinion when you can access them for free?

    Take advantage of our newsletter subscription and stay informed on the go!

    Subscribe

    Quick Summary

    Security awareness training needs improvement to combat growing cyber threats. Focus on behavioral change and personalized training for effective results.

    Improving Security Awareness Training: Common Mistakes and Solutions

    By Oz Alashe, CEO, CybSafe

    Cyber security has become a significant issue over the last few years. Ransomware attacks and data breaches are in the news on an almost daily basis, with all manner of businesses and institutions, from large corporations to schools and hospitals, being affected.

    The cyber threats will only continue to grow both in scale and sophistication. CybSafe’s recent examination of ICO data found that cyber attacks on British institutions doubled in the first half of 2021. For every cyber criminal caught, they are immediately replaced.

    Seeing this increasing danger, organisations have acknowledged the need for a well-funded cyber security agenda. Despite this, a recent study from CybSafe and the National Cybersecurity Alliance discovered that 64% of participants still do not have access to any cyber security guidance or training. Even for those who do receive training, a number of people consider the initiatives to be of little to no value, with 27% saying that it did not benefit them.

    To enhance security awareness, we must not focus solely on increasing the number of training programmes, but we must improve the existing initiatives to ensure they deliver results. If companies do not address the inefficiency of their current cyber-training, then employees soon become reluctant to follow the advice provided and no real change is achieved, leading to business leaders becoming increasingly frustrated that time and resources are going into initiatives that are no ROI. To counteract the growing cyber threat and to ensure effectiveness of security awareness training, it is necessary to not only refine our current strategy, but also go beyond just awareness and achieve tangible behavioural change.

    How understanding human behaviour can enhance security awareness

    To improve security awareness, it is necessary to understand what it involves. Put simply, it requires organisations to consider the human element to cyber risk, by informing employees of how their individual behaviours influence the cyber security of their business at large. If done properly, it will not only foster recurring cyber aware habits, but will also build customer trust in the organisation and boost employee enthusiasm, welfare, and confidence.

    Where are businesses falling short?

    Most businesses now acknowledge the significance of security awareness, but not all of them are seeing definitive outcomes from their actions. This is because people don’t fully understand the phrase “awareness”. Establishing a strong security culture necessitates legitimate behavioural change that isn’t simply making employees aware of cyber threats, but by providing employees with the appropriate knowledge they need to protect both themselves and their businesses.

    Organisations regularly rely on training exercises and programmes that are designed to decrease cyber risk but are immediately disregarded once completed. The best method of education is not to solely rely on instructing employees the dos and the don’ts but instead requires a team effort from both parties for it to pay-off in the long-term. Security awareness agendas must go beyond simply meeting basic requirements and  instead to inspire change that is both dynamic and quantifiable.

    The best approach to security awareness training

    There are a several ways businesses can enhance security awareness among their staff.

    Preparation and personalisation can go far when tackling this unreliability. Before any programme is put into practice, an organisation must be straightforward on who it’s aimed at, what it plans to do, and what areas need to be covered given the specific requirements for each department. For example, industries such as finance and increasingly education are especially vulnerable to ransomware attacks. Cyber threats are perpetually evolving, and research and education is the most important tool in our arsenal, and as different cyber-attack strategies rise and fall in use, so too should the areas a business focuses on.

    The same approach is required for our mindset towards security awareness overall. Training is forgotten if it is an infrequent and unengaging event and given the fluctuating nature of the cyber security landscape will also quickly become outdated. By using behavioural prompts and setting frequent and specific targets to each individual, businesses can guarantee their staff are both well-informed with the current threats and are acquiring behaviours over time that can help minimise them.

    Data is crucial to realising this. If a business is unable to assess the progress of its security awareness initiative, then it will be difficult to see any evidence of what is working and what is not. Metrics help set what steps will have been more effective at inflicting positive change from the beginning of the initiative and guarantee they deliver on their promise.

    Don’t play the ‘blame game’

    For the process to succeed, organisations must move from the blame culture that often accompanies cyber security initiatives. Instead of chastising the weakest link, they should instead be thought of as the first line of defence against cyber threats. A more positive attitude keeps everyone responsive and improves the extent to which security awareness programmes are understood. With this as the fundamental principle, coupled with data and an individualised approach, businesses can turn security awareness training from a boring office meeting into a vehicle for genuine behavioural change.

    Key Takeaways

    • •Cyber threats are increasing in scale and sophistication.
    • •Many employees lack effective security training.
    • •Behavioral change is crucial for security awareness.
    • •Training should be personalized and department-specific.
    • •A strong security culture builds trust and confidence.

    Frequently Asked Questions about Security awareness training: Where it’s going wrong, and how to improve it

    1What is the main topic?

    The article discusses the shortcomings of current security awareness training and how to improve it.

    2Why is security awareness training important?

    It helps in reducing cyber risks by fostering a security culture and promoting behavioral change.

    3How can businesses improve security training?

    By personalizing training programs and focusing on behavioral changes rather than just awareness.

    More from Business

    Explore more articles in the Business category

    Image for How Commercial Lending Software Platforms Are Structured and Utilized
    How Commercial Lending Software Platforms Are Structured and Utilized
    Image for Oil Traders vs. Tech Startups: Surprising Lessons from Two High-Stakes Worlds | Said Addi
    Oil Traders vs. Tech Startups: Surprising Lessons from Two High-Stakes Worlds | Said Addi
    Image for Why More Mortgage Brokers Are Choosing to Join a Network
    Why More Mortgage Brokers Are Choosing to Join a Network
    Image for From Recession Survivor to Industry Pioneer: Ed Lewis's Data Revolution
    From Recession Survivor to Industry Pioneer: Ed Lewis's Data Revolution
    Image for From Optometry to Soul Vision: The Doctor Helping Entrepreneurs Lead With Purpose
    From Optometry to Soul Vision: The Doctor Helping Entrepreneurs Lead With Purpose
    Image for Global Rankings Revealed: Top PMO Certifications Worldwide
    Global Rankings Revealed: Top PMO Certifications Worldwide
    Image for World Premiere of Midnight in the War Room to be Hosted at Black Hat Vegas
    World Premiere of Midnight in the War Room to be Hosted at Black Hat Vegas
    Image for Role of Personal Accident Cover in 2-Wheeler Insurance for Owners and Riders
    Role of Personal Accident Cover in 2-Wheeler Insurance for Owners and Riders
    Image for The Young Rich Lister Who Also Teaches: How Aaron Sansoni Built a Brand Around Execution
    The Young Rich Lister Who Also Teaches: How Aaron Sansoni Built a Brand Around Execution
    Image for Q3 2025 Priority Leadership: Tom Priore and Tim O'Leary Balance Near-Term Challenges with Long-Term Strategic Wins
    Q3 2025 Priority Leadership: Tom Priore and Tim O'Leary Balance Near-Term Challenges with Long-Term Strategic Wins
    Image for Using Modern Team Management Methods to Improve Collaboration in Hybrid Work Models
    Using Modern Team Management Methods to Improve Collaboration in Hybrid Work Models
    Image for Why Email Deliverability is a Business Risk Your Company Can’t Afford to Ignore
    Why Email Deliverability is a Business Risk Your Company Can’t Afford to Ignore
    View All Business Posts
    Previous Business PostBiggest Business Trends For 2022
    Next Business PostFive key business trends to think about in 2022