Bof! More than a third of Quebec employees (36%) say they are little or not concerned about data theft in their company.
Posted at 9:00 a.m.
One in five employees is even convinced that they cannot be the target of a cybercriminal at work.
These results may not be unrelated to another finding: in a similar proportion, 30% of Quebec employees indicate that no cybersecurity training is provided at their workplace.
This is revealed by a study of 1,000 Canadian employees on their sensitivity to cybersecurity issues, conducted by the firm Terranova Security and the polling institute Ipsos.
Quebec employees seem to show the same detachment – or disregard – for corporate data protection responsibilities. Three quarters (76%) of them believe that it is up to the IT department.
But this may be a matter of confusion or ambiguity: 62% also believe that they play an essential role in this protection.
Confirming this link, the report Global Risks Report 2022published by the World Economic Forum, noted that human error is the cause of 95% of cybersecurity problems.
An interest in training
Nationally, 39% of employees said they work in a company where cybersecurity awareness training is mandatory.
It’s not for lack of interest: 87% of respondents believe that cybersecurity training is interesting… whether their company offers it or not. When offered, nearly two-thirds of employees (64%) started or completed the training.
Specializing in cybersecurity training and awareness, the firm Terranova Security unsurprisingly concludes that cybersecurity training and awareness are neglected by many Quebec companies, despite rising cybercrime and the interest of their employees.
Investing in education and building a culture of cybersecurity is “strong protection against any cyberthreat,” said Theo Zafirakos, Chief Information Security Officer at Terranova Security..
The Terranova Security study is one of the segments of the survey conducted in the summer of 2022 among 4,000 people aged 18 to 75 in Canada, the United States, France, the United Kingdom and Australia.
France wears the dunce cap for cybersecurity training: 29% of its employees have followed and completed such training in a company, while the proportion is between 48 and 51% in the other four countries.