The Need for a Culture of Cybersecurity

Dateline: June 9, 2017

Welcome to our Friday WRAP – one thought-provoking idea to think about over the weekend.

In the wake of the WannaCry ransomware attack, there have been many expert opinions on what, why and how this happened.  A recent article by security expert Jennifer Blatnik, published at, titled The Impact of WannaCry on the Ransomware Conversation, suggests,

Ransomware is so successful because it relies on a human element, and as much as we hate to admit it, humans are fundamentally flawed. It’s for this reason that WannaCry continued to impact computers well into the week following the initial attack, despite many organizations spending all weekend notifying their employees and the public and fixing the issues that hit during the business day on Friday. No matter how much employee training or awareness goes into instructing your employees or the general public to refrain from opening attachments, deleting unknown emails and paying attention to the crucial signs of ransomware, the mere reliance on humans is an inherent failing that cannot be overcome.

We have written about the human vulnerability here, here and here.  But this analysis suggests even newer approaches are necessary.  Like a culture of safety in many of our organizations, a culture of cybersecurity is needed.

What can you do to build a culture of cybersecurity in your organization?  What would that look like?

That’s a WRAP!  Have a great weekend!


Speak Your Mind