Human Firewall

Neil Harrison

You’ll often hear the phrase people are the weakest linkwhen it comes to cybersecurity.  After all, it’s people who click those dodgy links, right … if only they’d stop and think! 

Don’t the statistics support this view? With almost half of all businesses in the UK falling victim to a cyber breach or attack*, raising to 75% for large businesses, a massive 86% of these are caused by phishing attacks. These use social engineering to lure people into clicking links which then allow the attacker to steal user credentials, credit card details, or to install malware. 

But here’s the thing, phishing works because we’re human.  We spend our busy and productive days clicking perfectly harmless links from colleagues all the time, and phishing uses tried and tested social engineering techniques, similar to the 'nudges' we see in advertising. We’re all prone to falling victim to these increasingly clever scams, especially when: 

  • There's some urgency
  • They’re directed at you personally 
  • There’s a threat if you don’t act quickly, or a reward if you do 
  • It appears to be from someone in a position of authority 
  • It’s related to a current event, like covid 

Incredibly, a third of businesses take no action after a breach, but if you want to reduce any business risk, including cyber security risk: 

  • How you manage people’s adoption of new technologies, policies, or processes matters 
  • How you train them on the awareness of the risks matters.  
  • How you nurture the right risk management culture matters.  
Blog Post Image

Sysdoc uses aviation principles in all we do, and where risk management is concerned its these principles that have made flying the safest form of transport. We can help you reduce your cybersecurity risk by: 

  • Understanding how Human Factors influence behaviours and decision-making. 
  • Using Experiential Learning techniques to provide safe learning environments simulating real-world environments and challenges. 
  • Establishing a blame-free, Just Culture, changing behaviours to encourage and recognise openness and transparency. 
  • Learning from Experience to ensure continuous improvement. 
  • Recognising the value of clearly documented and communicated End-to-End Processes and your role in making it work 
  • Enabling Data-Driven Decisions, providing an evidence base enabling more dynamic, confident decision making. 

Why not get in touch to see how we can help reduce your cybersecurity risks before you become one of the statistics. 

*Data from DCMS's Cyber Security Breaches Survey, 2020

Latest blog posts

See all blog posts

It's a Penalty

I’ll never forget my first encounter with It’s a Penalty at an event at the Brazilian embassy in London in 2015.  I met a young lady called Rose who told her powerful story of exploitation and her journey to safety. 

Clare Hill

My time at Sysdoc

Sysdoc has always felt like a big family to me. There is no hierarchy at Sysdoc – you can call anyone in the organisation to ask for help or to gain their thoughts and opinions without any hesitation. Because we are a smaller business, we all know each other and as a result I feel my learning and growth has happened at a much faster pace than I could have imagined.

Sarah Qurashi

Buyers ... Should they work with female suppliers?

McKinsey & Company found that companies with a higher representation of women in executive positions are more likely to outperform their competitors. "Delivering Through Diversity, 2017"

Ashleigh Hambling