Categories

Editor's Choice
Tech Jobs Network
News & Events
Access Control & Identity Management
AI & Data Analytics
Asset Management
Associations
Conferences & Events
Facilities & Building Management
Fire & Safety
Information Security
Infrastructure
Integrated Solutions
IoT & Automation
Perimeter Security, Alarms & Intruder Detection
Power Management
Products & Solutions
Security Services & Risk Management
Smart Home Automation 
Surveillance
Training & Education
Videos
Security by Industry Sector ▾








Print this page printer friendly version

Building a cyber-aware workforce

Issue 4 2023 Information Security, Security Services & Risk Management

Fortinet released its 2023 Security Awareness and Training Global Research Brief, highlighting the importance of organisations building a cyber-aware workforce to strengthen their security posture and reduce cyber-attacks.

Organisations are grappling with an increasingly sophisticated threat landscape. The most recent Global Threat Landscape Report from Fortinet’s FortiGuard Labs found that ransomware threats remain at peak levels with no evidence of slowing down globally. At the same time, Fortinet’s 2023 Cybersecurity Skills Gap Global Report found that 84% of organisations experienced one or more breaches in 2022.

And now the latest research from Fortinet’s 2023 Security Awareness and Training Global Research Brief reveals that more than 90% of leaders believe that increased employee cybersecurity awareness would help decrease the occurrence of cyberattacks. As organisations face increasing cyber risks, the research highlights the important role of employees in serving as an organisation’s first line of defence in protecting their organisation from cybercrime. Key findings from Fortinet’s research include:

• Employees are being targeted by cyber criminals. The research found that 81% of organisations faced malware, phishing, and password attacks last year, mainly targeted at users. This underscores that employees can be an organisation’s weakest point, or one of its most powerful defences.

• Having an effective training program is key to instilling good cyber hygiene in employees. Eighty-five percent of leaders say their organisation has a security awareness and training programme, yet more than 50% believe their employees still lack cybersecurity knowledge. This gap suggests the training programmes in place may not be as effective as they could be, resulting in inconsistency in how employees apply good cyber hygiene practices, or that training is not reinforced sufficiently.

• Cybersecurity is increasingly becoming a priority for the board of directors. The report found that 93% of organisations indicated their board of directors are asking about the organisation’s cyber defences and strategy.

Building a Cyber-aware Workforce

For organisations looking to implement cybersecurity awareness training for their employees, or those evaluating the effectiveness of their current program, Fortinet offers its Security Awareness and Training service to develop a cyber-aware workforce. Designed by the Fortinet Training Institute’s trainers, the service covers a broad range of topics in a practical way, and reinforces learnings with reminders and checks, helping to improve training outcomes. Organisations deploying the service also have access to a dashboard and reporting to address cyber insurance and compliance needs.




Share this article:
Share via emailShare via LinkedInPrint this page


Further reading:

71% of organisations suffered an identity breach
News & Events Information Security
The State of Identity Security 2026 report from Sophos finds human error and poor non-human identity management are the root causes of most attacks, as agentic AI accelerates the risk.

Read more...
Global security in 2026
Editor's Choice News & Events Security Services & Risk Management Industrial (Industry) Mining (Industry)
The World Security Report 2026 states: “In a world of increasing volatility, physical security has evolved. It is no longer just a defensive measure; it is a critical driver of corporate value.”

Read more...
Who is to blame for autonomous mistakes?
Editor's Choice Security Services & Risk Management Industrial (Industry) Mining (Industry)
Most supply agreements for AI-integrated equipment still closely resemble plant hire contracts from ten years ago: bilateral, human-focused, and silent on who bears the risk when a machine makes a decision on its own.

Read more...
Cyber resilience is the real defence
Security Services & Risk Management Information Security Infrastructure
Cyber resilience has evolved into a form of strategic agility, ensuring that when an interruption occurs, the business does not just survive; it snaps back into place before the market even notices a pause.

Read more...
You will not get your files back with VECT
Information Security
If the newbie to the ransomware scene, VECT, comes knocking at your organisation’s door, do not pay the ransom! The decryption keys simply do not exist. They were discarded at the moment of encryption by the malware itself.

Read more...
Industrial sector is a primary cyber target
Information Security
Threats in industrial environments are distributed with striking uniformity: APT-driven incidents constitute 17,8%, malware 14,9% and social engineering 13,9%. This pattern suggests that industrial organisations attract a broad range of adversaries with different capabilities and objectives.

Read more...
Key attributes of an effective cybersecurity leader
BlueVision Information Security
In an evolving technology landscape, an effective cyber leader must combine technical acumen, foresight, and adaptive leadership to mitigate risks, and risks can only be mitigated once accurately identified and remedial processes are in place.

Read more...
Employees are SA’s biggest cyber threat
Security Services & Risk Management Information Security
South Africa experienced a 46% increase in insider cyber risk in 2026, surpassing the global average of 44%. What is more, 63% of South African companies surveyed expect insider-driven data losses to increase.

Read more...
The post-Q1 security checklist
Asset Management Security Services & Risk Management
By this time of year, employees have changed jobs or roles, suppliers may have changed, and devices have moved between offices, homes, and sites. This is the right time for businesses to run a practical post-Q1 security check.

Read more...
PoPIA turns its attention to gated access
News & Events Security Services & Risk Management
The Information Regulator has gazetted its proposed Code of Conduct for the processing of personal information at gated access points. At 65 pages long, the code signals a significant shift in how personal information is collected and managed at entry points.

Read more...











SMART Security Business Directory


While every effort has been made to ensure the accuracy of the information contained herein, the publisher and its agents cannot be held responsible for any errors contained, or any loss incurred as a result. Articles published do not necessarily reflect the views of the publishers. The editor reserves the right to alter or cut copy. Articles submitted are deemed to have been cleared for publication. Advertisements and company contact details are published as provided by the advertiser. Technews Publishing (Pty) Ltd cannot be held responsible for the accuracy or veracity of supplied material.

Published by Technews

»  Dataweek Electronics & Communications Technology
»  Electronics Buyers' Guide (EBG)

»  SMART Security Solutions
»  SMART Security Business Directory

»  Motion Control in Southern Africa
»  Motion Control Buyers' Guide (MCBG)

»  South African Instrumentation & Control
»  South African Instrumentation & Control Buyers' Guide (IBG)



© Technews Publishing (Pty) Ltd. | All Rights Reserved.