Technology advancements have enabled organizations to transition to remote working. While this has helped with business continuity, organizations are left vulnerable to cyberattacks, as the lack of formal planning has left the virtual door ajar for cyber criminals looking to exploit weaknesses. This is where conducting a cyber security risk assessment, more importantly an employee risk assessment, becomes the first line of defense in combatting cyber threats.
In an article for SC Magazine, Kroll experts Alan Brill, Senior Managing Director and Chris Kudless, Vice President in the Cyber Risk practice of Kroll, a division of Duff & Phelps, state an employee cyber risk assessment is predictive and anticipates the future actions of an employee instead of judging past ones. They advocate for risk assessments, highlighting increased data sources, advanced analytics and artificial intelligence in developing specific employee-centric metrics. These metrics in turn render predictive models that focus on how an employee is likely to perform on certain tasks, like not clicking on a link or not responding to a business email compromise message. Thus, allowing the security team to identify and protect against vulnerabilities.
Read the full article here.